An issue was discovered in Joomla! 3.9.0 through 3.9.22. Improper handling of the username leads to a user enumeration attack vector in the backend login page.
CPE | Name | Operator | Version |
---|---|---|---|
joomla-cms | eq | 3.9.8 | |
joomla-cms | eq | 3.9.20-rc | |
joomla-cms | eq | 3.9.13-rc | |
joomla-cms | eq | 3.9.1 | |
joomla-cms | eq | 3.9.14-rc | |
joomla-cms | eq | 3.9.21 | |
joomla-cms | eq | 3.9.3-rc | |
joomla-cms | eq | 3.9.9 | |
joomla-cms | eq | 3.9.20 | |
joomla-cms | eq | 3.9.5 |