Description

An issue was discovered in Joomla! before 3.9.16. Missing length checks in the user table can lead to the creation of users with duplicate usernames and/or email addresses.

Remediation

References

CVE-2020-10240

Related Vulnerabilities

WordPress Plugin Sermon Browser Cross-Site Scripting and SQL Injection Vulnerabilities (0.43)

Lighttpd Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2014-2323)

Squid Uncontrolled Recursion Vulnerability (CVE-2023-50269)

MySQL CVE-2018-2776 Vulnerability (CVE-2018-2776)

WordPress Plugin Download Manager Cross-Site Scripting (3.2.46)

Severity

Medium

Classification

CVE-2020-10240 CWE-20 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N

Tags

Missing Update Known Vulnerabilities