Description

An issue was discovered in Joomla! Core before 3.8.8. Inadequate checks allowed users to see the names of tags that were either unpublished or published with restricted view permission.

Remediation

References

CVE-2018-11327

Related Vulnerabilities

PostgreSQL Missing Encryption of Sensitive Data Vulnerability (CVE-2017-7485)

WordPress Plugin Backup and Restore WordPress-WPBackItUp Cross-Site Request Forgery (1.6.7)

WordPress Plugin All 404 Redirect to Homepage Cross-Site Scripting (1.20)

WordPress Plugin Forminator-Contact Form, Payment Form & Custom Form Builder Cross-Site Request Forgery (1.14.8)

Jboss EAP Allocation of Resources Without Limits or Throttling Vulnerability (CVE-2019-9517)

Severity

Medium

Classification

CVE-2018-11327 CWE-200 CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N

Tags

Missing Update Known Vulnerabilities