vulnerability
Joomla!: [20190603] - Core - ACL hardening of com_joomlaupdate (CVE-2019-12764)
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 4 | (AV:N/AC:L/Au:S/C:N/I:P/A:N) | Jun 12, 2019 | Jun 12, 2019 | Nov 27, 2024 |
Severity
4
CVSS
(AV:N/AC:L/Au:S/C:N/I:P/A:N)
Published
Jun 12, 2019
Added
Jun 12, 2019
Modified
Nov 27, 2024
Description
An issue was discovered in Joomla! before 3.9.7. The update server URL of com_joomlaupdate can be manipulated by non Super-Admin users.
Solution
joomla-upgrade-3_9_7
NEW
Explore Exposure Command
Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.