Description
An issue was discovered in Joomla! 3.0.0 through 3.9.26. A missing token check causes a CSRF vulnerability in the AJAX reordering endpoint.
Remediation
References
Related Vulnerabilities
WordPress Plugin Child Theme Configurator Arbitrary File Disclosure (1.7.4)
Oracle JRE CVE-2019-2977 Vulnerability (CVE-2019-2977)
WordPress Plugin Calculated Fields Form Cross-Site Scripting (1.0.353)
MySQL CVE-2024-21163 Vulnerability (CVE-2024-21163)
WordPress 4.3.x Denial of Service Vulnerability (4.3 - 4.3.15)