Joomla! Multiple Vulnerabilities
Last Update Date:
31 Aug 2018 09:56
Release Date:
31 Aug 2018
4155
Views
RISK: Medium Risk
TYPE: Servers - Internet App Servers
Multiple Vulnerabilities have been identified in Joomla!. A remote attacker could exploit one of these vulnerabilities to trigger remote code execution, cross-site scripting and security restriction bypass on the targeted system.
Impact
- Cross-Site Scripting
- Remote Code Execution
- Security Restriction Bypass
System / Technologies affected
- Joomla! CMS versions 1.5.0 through 3.8.11
Solutions
Before installation of the software, please visit the software manufacturer web-site for more details.
- Update to 3.8.12
Vulnerability Identifier
Source
Related Link
- https://developer.joomla.org/security-centre/745-20180803-core-acl-violation-in-custom-fields.html
- https://developer.joomla.org/security-centre/744-20180802-core-stored-xss-vulnerability-in-the-frontend-profile.html
- https://developer.joomla.org/security-centre/743-20180801-core-hardening-the-inputfilter-for-phar-stubs.html
- https://www.auscert.org.au/bulletins/67490
Share with