Lucene search
HistoryOct 25, 2022 - 7:15 p.m.
CVE-2022-27912
joomla
cve-2022-27912
debug mode
data exposure
security vulnerability
5.3 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
LOW
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
5.3 Medium
AI Score
Confidence
High
0.001 Low
EPSS
Percentile
46.9%
An issue was discovered in Joomla! 4.0.0 through 4.2.3. Sites with publicly enabled debug mode exposed data of previous requests.
Affected configurations
Node
joomlajoomla\!Range4.0.0–4.2.3
| CPE | Name | Operator | Version |
|---|---|---|---|
| joomla:joomla\! | joomla joomla! | le | 4.2.3 |
CNA Affected
[
{
"defaultStatus": "unaffected",
"product": "Joomla! CMS",
"vendor": "Joomla! Project",
"versions": [
{
"status": "affected",
"version": "4.0.0-4.2.3"
}
]
}
]Social References
More
Related
cvelist
cvelist
joomla
joomla
[20221001] - Core - Disclosure of critical information in debug mode
2022-10-13 00:00:00
prion
prion
Design/Logic Flaw
2022-10-25 19:15:00
osv
osv
CVE-2022-27912
2022-10-25 19:15:09
nvd
nvd
CVE-2022-27912
2022-10-25 19:15:09
openvas
openvas
Joomla! 4.0.0 - 4.2.3 Multiple Vulnerabilities
2022-10-26 00:00:00
nessus
nessus
Joomla! 4.x < 4.2.4 Multiple Vulnerabilities
2022-10-26 00:00:00
5.3 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
LOW
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
5.3 Medium
AI Score
Confidence
High
0.001 Low
EPSS
Percentile
46.9%
Related for CVE-2022-27912