Description
In Joomla! before 3.9.14, a missing access check in framework files could lead to a path disclosure.
Remediation
References
Related Vulnerabilities
WordPress Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2019-8942)
WordPress Plugin Media.net Ads Manager Arbitrary File Upload (2.10.13)
Skipper Server-Side Request Forgery (SSRF) Vulnerability (CVE-2022-38580)
WordPress Plugin WP SVG Icons Cross-Site Request Forgery (3.2.1)