5 matches found
BIT-JOOMLA-2023-23750 [20230101] - Core - CSRF within post-installation messages
An issue was discovered in Joomla! 4.0.0 through 4.2.6. A missing token check causes a CSRF vulnerability in the handling of post-installation messages...
Cross site request forgery (csrf)
An issue was discovered in Joomla! 4.0.0 through 4.2.6. A missing token check causes a CSRF vulnerability in the handling of post-installation messages...
CVE-2023-23750 [20230101] - Core - CSRF within post-installation messages
An issue was discovered in Joomla! 4.0.0 through 4.2.6. A missing token check causes a CSRF vulnerability in the handling of post-installation messages...
CVE-2023-23750
CVE-2023-23750 : Joomla! Core on versions 4.0.0–4.2.6 suffers a CSRF vulnerability in the handling of post-installation messages due to a missing token check. The issue could enable unauthorized actions via forged requests within the affected workflow. Public sources in connected documents confir...
PT-2023-19175 · Joomla · Joomla!
Name of the Vulnerable Software and Affected Versions: Joomla! versions 4.0.0 through 4.2.6 Description: A missing token check causes a CSRF vulnerability in the handling of post-installation messages. This issue affects the handling of post-installation messages, potentially allowing for...