Vulnerability & Exploit Database

Back to search

FreeBSD: VID-A27D234A-C7F2-11E6-AE1B-002590263BF5 (CVE-2016-8870): Joomla! -- multiple vulnerabilities

Severity CVSS Published Added Modified
7 (AV:N/AC:M/Au:N/C:P/I:P/A:P) October 24, 2016 December 21, 2016 December 21, 2017

Description

The register method in the UsersModelRegistration class in controllers/user.php in the Users component in Joomla! before 3.6.4, when registration has been disabled, allows remote attackers to create user accounts by leveraging failure to check the Allow User Registration configuration setting.

Free Nexpose Download

Discover, prioritize, and remediate security risks today!

 Download now

References

Solution

freebsd-upgrade-package-joomla3

Related Vulnerabilities