Description In Joomla! before 3.8.2, a bug allowed third parties to bypass a user's 2-factor authentication method. Remediation References CVE-2017-16634 Related Vulnerabilities Joomla Other Vulnerability (CVE-2023-23752) Liferay DXP URL Redirection to Untrusted Site ('Open Redirect') Vulnerability (CVE-2024-25608) WordPress Plugin JetWidgets for Elementor and WooCommerce Local File Inclusion (1.1.7) SharePoint Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2010-0817) XWiki Exposure of Resource to Wrong Sphere Vulnerability (CVE-2023-34467) Severity Critical Classification CVE-2017-16634 CWE-287 CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H Tags Missing Update Known Vulnerabilities