Rapid7 Vulnerability & Exploit Database

Joomla!: [20190203] - Core - Additional warning in the Global Configuration textfilter settings (CVE-2019-7739)

Back to Search

Joomla!: [20190203] - Core - Additional warning in the Global Configuration textfilter settings (CVE-2019-7739)

Severity
4
CVSS
(AV:N/AC:M/Au:N/C:N/I:P/A:N)
Published
02/12/2019
Created
03/19/2019
Added
02/13/2019
Modified
02/15/2019

Description

An issue was discovered in Joomla! before 3.9.3. The "No Filtering" textfilter overrides child settings in the Global Configuration. This is intended behavior. However, it might be unexpected for the user because the configuration dialog lacks an additional message to explain this.

Solution(s)

  • joomla-upgrade-3_9_3

With Rapid7 live dashboards, I have a clear view of all the assets on my network, which ones can be exploited, and what I need to do in order to reduce the risk in my environment in real-time. No other tool gives us that kind of value and insight.

– Scott Cheney, Manager of Information Security, Sierra View Medical Center

;