BIT-JOOMLA-2024-27187 [20240804] - Core - Improper ACL for backend profile view

Improper Access Controls allows backend users to overwrite their username when disallowed...

CVE-2024-27187

Improper Access Controls allows backend users to overwrite their username when disallowed...

CVE-2024-27187

Improper Access Controls allows backend users to overwrite their username when disallowed...

CVE-2024-27187

CVE-2024-27187 is an issue in Joomla! core: the vulnerability arises from improper access controls in the backend profile view, allowing backend users to overwrite their username when disallowed. This is documented across multiple sources (NVD, Red Hat, OSV, and Nessus/NASL references). The commo...

PT-2024-21722 · Joomla +2 · Joomla! +1

Name of the Vulnerable Software and Affected Versions: Software affected versions not specified Description: The issue is related to improper access controls, allowing backend users to overwrite their username even when it is disallowed. Recommendations: At the moment, there is no information abo...