BIT-JOOMLA-2020-13760

In Joomla! before 3.9.19, missing token checks in compostinstall lead to CSRF...

Joomla! 3.7.0 - 3.9.18 CSRF Vulnerability

Joomla! is prone to a cross-site request forgery CSRF vulnerability because of missing token checks in compostinstall. SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders...

Joomla! cross-site request forgery vulnerability (CNVD-2020-41803)

Joomla! is the U.S. Open Source Matters team of a set of PHP and MySQL development using open source , cross-platform content management system CMS. A security vulnerability exists in Joomla! versions prior to 3.9.19, which stems from a missing token check in compostinstall. The vulnerability can...

CVE-2020-13760

In Joomla! before 3.9.19, missing token checks in compostinstall lead to CSRF...

CVE-2020-13760

In Joomla! before 3.9.19, missing token checks in compostinstall lead to CSRF...

Cross site request forgery (csrf)

In Joomla! before 3.9.19, missing token checks in compostinstall lead to CSRF...

CVE-2020-13760

CVE-2020-13760 affects Joomla! versions prior to 3.9.19 due to missing token checks in com_postinstall, enabling CSRF. Multiple connected sources (Red Hat, OSV, OpenVAS/Nessus entries) corroborate the description. CVSS‑3.1 vector (AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H) yields a base score of 8.8 (H...

[20200605] - Core - CSRF in com_postinstall

Missing token checks in compostinstall cause CSRF vulnerabilities...