4 matches found
GHSA-9M72-PW47-292W Joomla RCE Vulnerability
An issue was discovered in Joomla! before 3.8.13. comjoomlaupdate allows the execution of arbitrary code. The default ACL config enabled the ability of Administrator-level users to access comjoomlaupdate and trigger code execution...
Joomla RCE Vulnerability
An issue was discovered in Joomla! before 3.8.13. comjoomlaupdate allows the execution of arbitrary code. The default ACL config enabled the ability of Administrator-level users to access comjoomlaupdate and trigger code execution...
WordPress Plugin 'WP GDPR Compliance' < 1.4.3 Privilege Escalation
The WordPress application running on the remote host has a version of the 'WP GDPR Compliance' plugin that is prior to 1.4.3 and, thus, is affected by a user-input validation error that can allow privilege escalation attacks. Such attacks allow, among other actions, creation of new...
CVE-2018-17856
An issue was discovered in Joomla! before 3.8.13. comjoomlaupdate allows the execution of arbitrary code. The default ACL config enabled the ability of Administrator-level users to access comjoomlaupdate and trigger code execution...