vulnerability

FreeBSD: VID-BF2B9C56-B93E-11E8-B2A8-A4BADB296695 (CVE-2018-15860): joomla3 -- vulnerabilitiesw

Try Surface Command

Back to search

Severity	CVSS	Published	Added	Modified
5	(AV:N/AC:M/Au:S/C:P/I:P/A:N)	2018-08-23	2018-09-16	2025-02-19

Severity

CVSS

(AV:N/AC:M/Au:S/C:P/I:P/A:N)

Published

2018-08-23

Added

2018-09-16

Modified

2025-02-19

Description

Details for this vulnerability have not been published by NIST at this point. Descriptions from software vendor advisories for this issue are provided below.

From VID-BF2B9C56-B93E-11E8-B2A8-A4BADB296695:

JSST reports: Multiple low-priority Vulnerabilities

Inadequate checks in the InputFilter class could allow specifically prepared PHAR files to pass the upload filter.

Inadequate output filtering on the user profile page could lead to a stored XSS attack.

Inadequate checks regarding disabled fields can lead to an ACL violation.

Solution

freebsd-upgrade-package-joomla3

References

NVD-CVE-2018-15860

NEW

Explore Exposure Command

Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.

Try it today