CVE-2011-2889
templates/system/error.php in Joomla! before 1.5.23 might allow remote attackers to obtain sensitive information via unspecified vectors that trigger an undefined value of a certain error field, leading to disclosure of the installation path. NOTE: this might overlap CVE-2011-2488.
We have discovered 267,947 live websites that are affected by CVE-2011-2889.
Affected Software
| Product |  Joomla |
| Category | Content Management System |
| Vulnerable Domains | 267,947 live websites (96.47% of Joomla install base) |
| Vulnerable Versions |
|
| Vulnerable Versions Count | 2 versions ( 1.19% of all versions) |
Details
- Published - Jul 28, 2011
- Updated - Aug 6, 2024
CVE References
CVE-2011-2889 usage by Country
 United States | 15,491 websites |
 Italy | 66,442 websites |
 Australia | 24,762 websites |
 GB | 16,627 websites |
 Germany | 13,695 websites |
 Russia | 13,446 websites |
 Poland | 12,567 websites |
 Netherlands | 11,465 websites |
 Iran | 9,176 websites |
 South Africa | 8,913 websites |
CVE-2011-2889 usage by TLD
| .com | 65,207 websites |
| .it | 43,627 websites |
| .com.au | 17,007 websites |
| .ru | 11,539 websites |
| .pl | 8,985 websites |
| .co.uk | 8,953 websites |
| .org | 7,372 websites |
| .nl | 6,810 websites |
| .de | 6,476 websites |
| .net | 5,782 websites |
Vulnerable Versions
Vulnerable versions are highlighted in redWebsites affected by CVE-2011-2889
Top websites that are affected by CVE-2011-2889. Please click on the "Contact us" link to get more information.| Domain | Country | Rank | Contacts |
|---|---|---|---|
| *****************.de | Germany | *,*** | |
| *******.**.ca |  Canada | *,*** | |
| **************.********.com | United States | **,*** | |
| ***********.com | Italy | **,*** | |
| ***********.**.za | South Africa | **,*** | |
| ********.com |  Serbia | **,*** | |
| ***************.com | Italy | **,*** | |
| ********.com | United States | **,*** | |
| *********.com | GB | **,*** | |
| *****.**.uk | GB | **,*** |
FAQ
A total of 267,947 websites have been identified as vulnerable to CVE-2011-2889, discovered through global website indexing conducted by WebTechSurvey.
Joomla is susceptible to CVE-2011-2889 vulnerability.
Joomla versions before 1.5.23 are vulnerable to CVE-2011-2889.
Version 1.5.23 of Joomla addresses the CVE-2011-2889 security vulnerability.
References
- http://developer.joomla.org/security/news/9-security/10-core-security/340-20110401-core-information-disclosure.html
- http://www.joomla.org/announcements/release-news/5367-joomla-1523-released.html
- https://exchange.xforce.ibmcloud.com/vulnerabilities/68883
- http://www.openwall.com/lists/oss-security/2011/07/01/1