7 matches found
CVE-2024-21722
The MFA management features did not properly terminate existing user sessions when a user's MFA methods have been modified...
Joomla! 5.x < 5.0.3 Multiple Vulnerabilities
According to its self-reported version, the instance of Joomla! running on the remote web server is 1.5.x prior to 4.4.3 or 5.x prior to 5.0.3. It is, therefore, affected by multiple vulnerabilities. - An insufficient session expiration in MFA management views. CVE-2024-21722 - An open redirect i...
Joomla! 1.5.x < 4.4.3 Multiple Vulnerabilities
According to its self-reported version, the instance of Joomla! running on the remote web server is 1.5.x prior to 4.4.3 or 5.x prior to 5.0.3. It is, therefore, affected by multiple vulnerabilities. - An insufficient session expiration in MFA management views. CVE-2024-21722 - An open redirect i...
CVE-2024-21722 [20240201] - Core - Insufficient session expiration in MFA management views
The MFA management features did not properly terminate existing user sessions when a user's MFA methods have been modified...
CVE-2024-21722 [20240201] - Core - Insufficient session expiration in MFA management views
The MFA management features did not properly terminate existing user sessions when a user's MFA methods have been modified...
CVE-2024-21722
The issue CVE-2024-21722 affects Joomla! CMS: the MFA management views did not properly terminate existing user sessions when a user’s MFA methods were modified. The root cause is insufficient session expiration tied to MFA changes, which can allow previously authenticated sessions to persist aft...
Joomla 1.5.x < 3.10.15 / 4.0.x < 4.4.3 / 5.0.x < 5.0.3 Multiple Vulnerabilities (5904-joomla-5-0-3-and-4-4-3-security-and-bug-fix-release)
According to its self-reported version, the instance of Joomla! running on the remote web server is 1.5.x prior to 3.10.15, 4.0.x prior to 4.4.3, or 5.0.x prior to 5.0.3. It is, therefore, affected by multiple vulnerabilities. - The MFA management features did not properly terminate existing user...