Description

An issue was discovered in Joomla! 1.6.0 through 3.9.24. Inadequate filtering of form contents could allow to overwrite the author field.

Remediation

References

CVE-2021-26029

Related Vulnerabilities

WordPress Plugin WP Events Calendar 'event_id' Parameter SQL Injection (6.5.2)

PHP Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability (CVE-2007-1381)

Moodle Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2022-0332)

WordPress Plugin WP Insightly for Contact Form 7 and Ninja Forms Cross-Site Scripting (1.0.7)

Apache HTTP Server Improper Input Validation Vulnerability (CVE-2012-0021)

Severity

Medium

Classification

CVE-2021-26029 CWE-20 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N

Tags

Missing Update Known Vulnerabilities