/*====== google reCaptcha ======*/
German Chinese (Traditional) Czech Danish English Filipino French Greek Hebrew Hindi Hungarian Irish Italian Japanese Korean Norwegian Persian Polish Portuguese Russian Spanish Swedish Thai Turkish

Bewertung: 0 / 5

Star InactiveStar InactiveStar InactiveStar InactiveStar Inactive
  • [20200801] - Core - XSS in mod_latestactions

    Security Announcements Aug 25, 2020 | 13:00 pm

    Project: Joomla!SubProject: CMSImpact: ModerateSeverity: LowVersions: 3.9.0-3.9.20Exploit type: XSSReported Date: 2020-August-21Fixed Date: 2020-August-25CVE Number: CVE-2020-24599DescriptionLack of escaping in mod_latestactions allows XSS attacks.Affected InstallsJoomla! CMS versions 3.9.0 - 3.9.20SolutionUpgrade to version 3.9.21ContactThe JSST at the Joomla! Security Centre.Reported By: Peter Martin

  • [20200701] - Core - CSRF in com_installer ajax_install endpoint

    Security Announcements Jul 14, 2020 | 13:00 pm

    Project: Joomla!SubProject: CMSImpact: LowSeverity: LowVersions: 3.7.0-3.9.19Exploit type: CSRFReported Date: 2020-May-07Fixed Date: 2020-July-14CVE Number: CVE-2020-XXXXXDescriptionA missing token check in the ajax_install endpoint com_installer causes a CSRF vulnerability.Affected InstallsJoomla! CMS versions 3.7.0 - 3.9.19SolutionUpgrade to version 3.9.20ContactThe JSST at the Joomla! Security Centre.Reported[…]

  • [20200605] - Core - CSRF in com_postinstall

    Security Announcements Jun 2, 2020 | 13:00 pm

    Project: Joomla!SubProject: CMSImpact: LowSeverity: LowVersions: 3.7.0-3.9.18Exploit type: CSRFReported Date: 2020-May-08Fixed Date: 2020-June-02CVE Number: CVE-2020-13760DescriptionMissing token checks in com_postinstall cause CSRF vulnerabilities.Affected InstallsJoomla! CMS versions 3.7.0 - 3.9.18SolutionUpgrade to version 3.9.19ContactThe JSST at the Joomla! Security Centre.Reported By: Bui Duc Anh[…]




Beitrag teilen

Submit to DeliciousSubmit to DiggSubmit to FacebookSubmit to Google PlusSubmit to StumbleuponSubmit to TechnoratiSubmit to TwitterSubmit to LinkedIn


Go to top