Tag: Security Centre

[20190801] – Core – Hardening com_contact contact form

Project: Joomla!
SubProject: CMS
Impact: Moderate
Severity: Low
Versions: 1.6.2 – 3.9.10
Exploit type: Incorrect Access Control
Reported Date: 2019-April-09
Fixed Date: 2019-August-13
CVE Number: CVE-2019-XXXXX

Description
Inadequate checks in com_co…


August 13, 2019 0

[20190701] – Core – Filter attribute in subform fields allows remote code execution

Project: Joomla!
SubProject: CMS
Impact: Moderate
Severity: Low
Versions: 3.9.7 – 3.9.8
Exploit type: Remote Code Execution
Reported Date: 2019-June-20
Fixed Date: 2019-July-09
CVE Number: TBA

Description
Inadequate filtering allows users authorised …


July 9, 2019 0

[20190603] – Core – ACL hardening of com_joomlaupdate

Project: Joomla!
SubProject: CMS
Impact: Low
Severity: Low
Versions: 3.8.13 through 3.9.6
Exploit type: Incorrect Access Control
Reported Date: 2019-April-10
Fixed Date: 2019-June-11
CVE Number: CVE-2019-12764

Description
The update server URL of com…


June 11, 2019 0

[20190603] – Core – ACL hardening of com_joomlaupdate

Project: Joomla!
SubProject: CMS
Impact: Low
Severity: Low
Versions: 3.8.13 through 3.9.6
Exploit type: Incorrect Access Control
Reported Date: 2019-April-10
Fixed Date: 2019-June-11
CVE Number: CVE-2019-12764

Description
The update server URL of com…


June 11, 2019 0

[20190603] – Core – ACL hardening of com_joomlaupdate

Project: Joomla!
SubProject: CMS
Impact: Low
Severity: Low
Versions: 3.8.13 through 3.9.6
Exploit type: Incorrect Access Control
Reported Date: 2019-April-10
Fixed Date: 2019-June-11
CVE Number: CVE-2019-12764

Description
The update server URL of com…


June 11, 2019 0

[20190603] – Core – ACL hardening of com_joomlaupdate

Project: Joomla!
SubProject: CMS
Impact: Low
Severity: Low
Versions: 3.8.13 through 3.9.6
Exploit type: Incorrect Access Control
Reported Date: 2019-April-10
Fixed Date: 2019-June-11
CVE Number: CVE-2019-12764

Description
The update server URL of com…


June 11, 2019 0

[20190603] – Core – ACL hardening of com_joomlaupdate

Project: Joomla!
SubProject: CMS
Impact: Low
Severity: Low
Versions: 3.8.13 through 3.9.6
Exploit type: Incorrect Access Control
Reported Date: 2019-April-10
Fixed Date: 2019-June-11
CVE Number: CVE-2019-12764

Description
The update server URL of com…


June 11, 2019 0

[20190603] – Core – ACL hardening of com_joomlaupdate

Project: Joomla!
SubProject: CMS
Impact: Low
Severity: Low
Versions: 3.8.13 through 3.9.6
Exploit type: Incorrect Access Control
Reported Date: 2019-April-10
Fixed Date: 2019-June-11
CVE Number: CVE-2019-12764

Description
The update server URL of com…


June 11, 2019 0

[20190603] – Core – ACL hardening of com_joomlaupdate

Project: Joomla!
SubProject: CMS
Impact: Low
Severity: Low
Versions: 3.8.13 through 3.9.6
Exploit type: Incorrect Access Control
Reported Date: 2019-April-10
Fixed Date: 2019-June-11
CVE Number: CVE-2019-12764

Description
The update server URL of com…


June 11, 2019 0

[20190603] – Core – ACL hardening of com_joomlaupdate

Project: Joomla!
SubProject: CMS
Impact: Low
Severity: Low
Versions: 3.8.13 through 3.9.6
Exploit type: Incorrect Access Control
Reported Date: 2019-April-10
Fixed Date: 2019-June-11
CVE Number: CVE-2019-12764

Description
The update server URL of com…


June 11, 2019 0