Description In Joomla! before 3.8.2, a bug allowed third parties to bypass a user's 2-factor authentication method. Remediation References CVE-2017-16634 Related Vulnerabilities WordPress Plugin Contact Form 7 Multi-Step Forms Security Bypass (3.0.8) Apache Tomcat Configuration Vulnerability (CVE-2008-0128) Oracle Application Server Other Vulnerability (CVE-2004-1370) WordPress Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2019-16221) Oracle JRE CVE-2020-2757 Vulnerability (CVE-2020-2757) Severity Critical Classification CVE-2017-16634 CWE-287 CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H Tags Missing Update Known Vulnerabilities