vulnerability
Joomla!: [20200401] - Core - Incorrect access control in com_users access level editing function (CVE-2020-11891)
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 5 | (AV:N/AC:L/Au:N/C:N/I:P/A:N) | Apr 22, 2020 | Apr 22, 2020 | Mar 30, 2026 |
Severity
5
CVSS
(AV:N/AC:L/Au:N/C:N/I:P/A:N)
Published
Apr 22, 2020
Added
Apr 22, 2020
Modified
Mar 30, 2026
Description
An issue was discovered in Joomla! before 3.9.17. Incorrect ACL checks in the access level section of com_users allow the unauthorized editing of usergroups.
Solution
joomla-upgrade-3_9_17
NEW
Explore Exposure Command
Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.