Description

Joomla! 3.4.4 through 3.6.3 allows attackers to reset username, password, and user group assignments and possibly perform other user account modifications via unspecified vectors.

Remediation

References

CVE-2016-9081

Related Vulnerabilities

Internet Information Services Other Vulnerability (CVE-2002-0071)

osCommerce Other Vulnerability (CVE-2005-1951)

WordPress Plugin Online Lesson Booking Multiple Vulnerabilities (0.8.6)

PHP Other Vulnerability (CVE-2015-8835)

LimeSurvey Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2012-4994)

Severity

Critical

Classification

CVE-2016-9081 CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Tags

Missing Update Known Vulnerabilities