Joomla! Multiple Vulnerabilities
Last Update Date:
16 Apr 2019 10:13
Release Date:
16 Apr 2019
5365
Views
RISK: Medium Risk
TYPE: Servers - Internet App Servers
Multiple Vulnerabilities have been identified in Joomla!. A remote attacker could exploit one of these vulnerabilities to trigger security restriction bypass, cross-site scripting and sensitive information disclosure on the targeted system.
Impact
- Cross-Site Scripting
- Security Restriction Bypass
- Information Disclosure
System / Technologies affected
- Joomla! CMS versions 3.0.0 through 3.9.4
Solutions
Before installation of the software, please visit the software manufacturer web-site for more details.
- Update to 3.9.5
Vulnerability Identifier
Source
Related Link
- https://developer.joomla.org/security-centre/779-20190403-core-object-prototype-pollution-in-jquery-extend.html
- https://developer.joomla.org/security-centre/778-20190402-core-helpsites-refresh-endpoint-callable-for-unauthenticated-users.html
- https://developer.joomla.org/security-centre/777-20190401-core-directory-traversal-in-com-media.html
- https://www.auscert.org.au/bulletins/79062
Share with