3 matches found
CVE-2017-16634
In Joomla! before 3.8.2, a bug allowed third parties to bypass a user's 2-factor authentication method...
CVE-2017-16634
CVE-2017-16634 affects Joomla! 3.x prior to 3.8.2 and stems from a bug in the core authentication flow that allows bypassing a user’s two‑factor authentication method. The connected Nessus entries corroborate authentication bypass for Joomla! versions under 3.8.2. The documented remediation is to...
Joomla! 1.5.0 < 3.8.2 Multiple Vulnerabilities
According to its self-reported version number, the Joomla! installation running on the remote web server is 1.5.0 or later but prior to 3.8.2. It is, therefore, affected by an authentication bypass and multiple information disclosure vulnerabilities. Note that Nessus has not attempted to exploit...