CVE-2015-8566
Joomla! Framework <1.3.1 - RCE
Title source: llmDescription
The Session package 1.x before 1.3.1 for Joomla! Framework allows remote attackers to execute arbitrary code via unspecified session values.
Exploits (1)
exploitdb
WORKING POC
by Andrew McNicol · pythonwebappsphp
https://www.exploit-db.com/exploits/39033
Scores
EPSS
0.0111
EPSS Percentile
78.2%
Details
Status
published
Products (2)
joomla/session
1.3.0
joomla/session
0 - 1.3.1Packagist
Published
Dec 16, 2015
Tracked Since
Feb 18, 2026