Description

An issue was discovered in Joomla! 4.0.0 through 4.2.6. A missing token check causes a CSRF vulnerability in the handling of post-installation messages.

Remediation

References

CVE-2023-23750

Related Vulnerabilities

WordPress 4.6.x Multiple Vulnerabilities (4.6 - 4.6.2)

WordPress Plugin Events Manager Multiple Vulnerabilities (5.5.7.1)

WordPress Plugin Media Tagz Gallery Multiple Unspecified Vulnerabilities (1.0)

Plone CMS Permissions, Privileges, and Access Controls Vulnerability (CVE-2011-4030)

Microsoft SQL Server Other Vulnerability (CVE-2000-1083)

Severity

Medium

Classification

CVE-2023-23750 CWE-352 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L

Tags

Missing Update Known Vulnerabilities