[20170407] - Core - ACL Violations

2017-04-25T00:00:00
ID JOOMLA-689
Type joomla
Reporter Open Source Matters, Inc.
Modified 2017-04-25T00:00:00

Description

Inadequate mime type checks allowed low-privilege users to upload swf files even if they were explicitly forbidden.