BIT-JOOMLA-2024-21722 [20240201] - Core - Insufficient session expiration in MFA management views

The MFA management features did not properly terminate existing user sessions when a user's MFA methods have been modified...

CVE-2024-21722

The MFA management features did not properly terminate existing user sessions when a user's MFA methods have been modified...

Veeam My Account Portal - MFA Guide

Updated MFA Requirements Starting July 7, 2026, logging in to Veeam Data Cloud cloud.veeam.com using a Veeam Account will require that the Veeam Account have Multi-Factor Authentication MFA enabled. Please note: if MFA is already enabled on your Veeam Account, no action is required. When accessin...

CVE-2024-21722

The MFA management features did not properly terminate existing user sessions when a user's MFA methods have been modified...

Information disclosure

The MFA management features did not properly terminate existing user sessions when a user's MFA methods have been modified...

Joomla! patches XSS flaws that could lead to remote code execution

On February 20, Joomla! posted details about four vulnerabilities it had fixed in its Content Management System CMS, and one in the Joomla! Framework that affects the CMS. Joomla! is an open-source CMS that’s been around since 2005, and has been one of the most popular CMS platforms by market sha...

Joomla! 5.x < 5.0.3 Multiple Vulnerabilities

According to its self-reported version, the instance of Joomla! running on the remote web server is 1.5.x prior to 4.4.3 or 5.x prior to 5.0.3. It is, therefore, affected by multiple vulnerabilities. - An insufficient session expiration in MFA management views. CVE-2024-21722 - An open redirect i...

CVE-2024-21722 [20240201] - Core - Insufficient session expiration in MFA management views

The MFA management features did not properly terminate existing user sessions when a user's MFA methods have been modified...