Description

An issue was discovered in Joomla! before 3.8.13. com_installer actions do not have sufficient CSRF hardening in the backend.

Remediation

References

CVE-2018-17858

Related Vulnerabilities

WordPress Plugin WordPress Landing Pages Multiple Vulnerabilities (1.8.4)

WordPress Plugin Agent Storm by StormRETS Multiple Cross-Site Scripting Vulnerabilities (1.1.35)

WordPress Plugin Smart Manager for WooCommerce & WPeC SQL Injection (3.9.6)

WordPress 4.2.x Multiple Vulnerabilities (4.2 - 4.2.30)

Oracle JRE CVE-2011-3544 Vulnerability (CVE-2011-3544)

Severity

High

Classification

CVE-2018-17858 CWE-352 CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Tags

Missing Update Known Vulnerabilities