Joomla

[20210103] - Core - XSS in com_tags image parameters

1 week 4 days ago
  • Project: Joomla!
  • SubProject: CMS
  • Impact: Moderate
  • Severity: Low
  • Versions:3.1.0 - 3.9.23
  • Exploit type: XSS
  • Reported Date: 2020-09-01
  • Fixed Date: 2021-01-12
  • CVE Number: CVE-2021-23125
Description

Lack of escaping of image-related parameters in multiple com_tags views cause lead to XSS attack vectors.

Affected Installs

Joomla! CMS versions 3.1.0 - 3.9.23

Solution

Upgrade to version 3.9.24

Contact

The JSST at the Joomla! Security Centre.

Reported By: Šarūnas Paulauskas
Joomla! Security Strike Team

[20210102] - Core - XSS in mod_breadcrumbs aria-label attribute

1 week 4 days ago
  • Project: Joomla!
  • SubProject: CMS
  • Impact: Moderate
  • Severity: Low
  • Versions:3.9.0 - 3.9.23
  • Exploit type: XSS
  • Reported Date: 2020-09-01
  • Fixed Date: 2021-01-12
  • CVE Number: CVE-2021-23124
Description

Lack of escaping in mod_breadcrumbs aria-label attribute allows XSS attacks.

Affected Installs

Joomla! CMS versions 3.9.0 - 3.9.23

Solution

Upgrade to version 3.9.24

Contact

The JSST at the Joomla! Security Centre.

Reported By: Šarūnas Paulauskas
Joomla! Security Strike Team

[20210101] - Core - com_modules exposes module names

1 week 4 days ago
  • Project: Joomla!
  • SubProject: CMS
  • Impact: Low
  • Severity: Low
  • Versions:3.0.0 - 3.9.23
  • Exploit type: Incorrect Access Control
  • Reported Date: 2020-07-07
  • Fixed Date: 2021-01-12
  • CVE Number: CVE-2021-23123
Description

Lack of ACL checks in the orderPosition endpoint of com_modules leak names of unpublished and/or inaccessible modules.

Affected Installs

Joomla! CMS versions 3.0.0 - 3.9.23

Solution

Upgrade to version 3.9.24

Contact

The JSST at the Joomla! Security Centre.

Reported By: Phil Taylor
Joomla! Security Strike Team

[20201107] - Core - Write ACL violation in multiple core views

1 month 4 weeks ago
  • Project: Joomla!
  • SubProject: CMS
  • Impact: High
  • Severity: Low
  • Versions:1.7.0 - 3.9.22
  • Exploit type: ACL Violation
  • Reported Date: 2018-11-04
  • Fixed Date: 2020-11-24
  • CVE Number: CVE-2020-35616
Description

Lack of input validation while handling ACL rulesets can cause write ACL violations.

Affected Installs

Joomla! CMS versions 1.7.0 - 3.9.22

Solution

Upgrade to version 3.9.23

Contact

The JSST at the Joomla! Security Centre.

Reported By:  Elisa Foltyn, Benjamin Trenkle
Joomla! Security Strike Team

[20201106] - Core - CSRF in com_privacy emailexport feature

1 month 4 weeks ago
  • Project: Joomla!
  • SubProject: CMS
  • Impact: Low
  • Severity: Low
  • Versions: 3.9.0-3.9.22
  • Exploit type: CSRF
  • Reported Date: 2020-10-08
  • Fixed Date: 2020-11-24
  • CVE Number: CVE-2020-35615
Description

A missing token check in the emailexport feature of com_privacy causes a CSRF vulnerability.

Affected Installs

Joomla! CMS versions 3.9.0 - 3.9.22

Solution

Upgrade to version 3.9.23

Contact

The JSST at the Joomla! Security Centre.

Reported By:  Lee Thao from Viettel Cyber Security
Joomla! Security Strike Team

[20201105] - Core - User Enumeration in backend login

1 month 4 weeks ago
  • Project: Joomla!
  • SubProject: CMS
  • Impact: Low
  • Severity: Low
  • Versions: 3.9.0-3.9.22
  • Exploit type: User Enumeration
  • Reported Date: 2020-08-15
  • Fixed Date: 2020-11-24
  • CVE Number: CVE-2020-35614
Description

Improper handling of the username leads to a user enumeration attack vector in the backend login page.

Affected Installs

Joomla! CMS versions 3.9.0 - 3.9.22

Solution

Upgrade to version 3.9.23

Contact

The JSST at the Joomla! Security Centre.

Reported By:  Phil Taylor
Joomla! Security Strike Team

[20201104] - Core - SQL injection in com_users list view

1 month 4 weeks ago
  • Project: Joomla!
  • SubProject: CMS
  • Impact: High
  • Severity: Low
  • Versions: 3.0.0-3.9.22
  • Exploit type: SQL Injection
  • Reported Date: 2020-10-13
  • Fixed Date: 2020-11-24
  • CVE Number: CVE-2020-35613
Description

Improper filter blacklist configuration leads to a SQL injection vulnerability in the backend user list.

Affected Installs

Joomla! CMS versions 3.0.0 - 3.9.22

Solution

Upgrade to version 3.9.23

Contact

The JSST at the Joomla! Security Centre.

Reported By:  ka1n4t
Joomla! Security Strike Team

[20201103] - Core - Path traversal in mod_random_image

1 month 4 weeks ago
  • Project: Joomla!
  • SubProject: CMS
  • Impact: Moderate
  • Severity: Low
  • Versions: 2.5.0-3.9.22
  • Exploit type: Path traversal
  • Reported Date: 2020-10-06
  • Fixed Date: 2020-11-24
  • CVE Number: CVE-2020-35612
Description

The folder parameter of mod_random_image lacked input validation, leading to a path traversal vulnerability.

Affected Installs

Joomla! CMS versions 2.5.0 - 3.9.22

Solution

Upgrade to version 3.9.23

Contact

The JSST at the Joomla! Security Centre.

Reported By:  Lee Thao from Viettel Cyber Security, Phil Taylor
Joomla! Security Strike Team

[20201102] - Core - Disclosure of secrets in Global Configuration page

1 month 4 weeks ago
  • Project: Joomla!
  • SubProject: CMS
  • Impact: Moderate
  • Severity: Low
  • Versions: 2.5.0-3.9.22
  • Exploit type: Information Disclosure
  • Reported Date: 2020-09-23
  • Fixed Date: 2020-11-24
  • CVE Number: CVE-2020-35611
Description

The globlal configuration page does not remove secrets from the HTML output, disclosing the current values.

Affected Installs

Joomla! CMS versions 2.5.0 - 3.9.22

Solution

Upgrade to version 3.9.23

Contact

The JSST at the Joomla! Security Centre.

Reported By:  Corch
Joomla! Security Strike Team

[20201101] - Core - com_finder ignores access levels on autosuggest

1 month 4 weeks ago
  • Project: Joomla!
  • SubProject: CMS
  • Impact: Moderate
  • Severity: Low
  • Versions: 2.5.0-3.9.22
  • Exploit type: Information Disclosure
  • Reported Date: 2020-06-21
  • Fixed Date: 2020-11-24
  • CVE Number: CVE-2020-35610
Description

The autosuggestion feature of com_finder did not respect the access level of the corresponding terms.

Affected Installs

Joomla! CMS versions 2.5.0 - 3.9.22

Solution

Upgrade to version 3.9.23

Contact

The JSST at the Joomla! Security Centre.

Reported By:  Phil Taylor
Joomla! Security Strike Team
Checked
41 minutes 5 seconds ago
Subscribe to Joomla feed
Categrory