Lucene search
K

6 matches found

OSV
OSV
added 2025/04/03 2:13 p.m.6 views

BIT-JOOMLA-2021-26033 [20210502] - Core - CSRF in AJAX reordering endpoint

An issue was discovered in Joomla! 3.0.0 through 3.9.26. A missing token check causes a CSRF vulnerability in the AJAX reordering endpoint...

6.5CVSS6.4AI score0.00604EPSS
Exploits0References2
CNVD
CNVD
added 2021/05/27 12:0 a.m.9 views

Joomla! cross-site request forgery vulnerability (CNVD-2021-38295)

Joomla! is a globally recognized content management system developed using the PHP language coupled with a MySQL database that can be implemented on various platforms such as Linux, Windows, MacOSX, and many others. A cross-site request forgery vulnerability exists in the AJAX reordering endpoint...

6.5CVSS6.6AI score0.00604EPSS
Exploits0References1
NVD
NVD
added 2021/05/26 11:15 a.m.13 views

CVE-2021-26033

An issue was discovered in Joomla! 3.0.0 through 3.9.26. A missing token check causes a CSRF vulnerability in the AJAX reordering endpoint...

6.5CVSS0.00604EPSS
Exploits0References1
Prion
Prion
added 2021/05/26 11:15 a.m.27 views

Cross site request forgery (csrf)

An issue was discovered in Joomla! 3.0.0 through 3.9.26. A missing token check causes a CSRF vulnerability in the AJAX reordering endpoint...

4.3CVSS6.4AI score0.00604EPSS
Exploits0References1Affected Software1
Positive Technologies
Positive Technologies
added 2021/05/26 12:0 a.m.5 views

PT-2021-16926 · Joomla · Joomla!

Name of the Vulnerable Software and Affected Versions: Joomla! versions 3.0.0 through 3.9.26 Description: A missing token check causes a CSRF issue in the "AJAX reordering endpoint". Recommendations: For Joomla! versions 3.0.0 through 3.9.26, update to a version that includes the fix for the...

6.5CVSS7.3AI score0.00604EPSS
Exploits0References6
CNNVD
CNNVD
added 2021/05/25 12:0 a.m.5 views

Joomla! 跨站请求伪造漏洞

Joomla! is a globally recognized content management system developed using the PHP language coupled with a MySQL database that can be implemented on various platforms such as Linux, Windows, MacOSX, and many others. A cross-site request forgery vulnerability exists in the AJAX reordering endpoint...

6.5CVSS5.4AI score0.00604EPSS
Exploits0References3
Rows per page
Query Builder