Description
An issue was discovered in Joomla! 3.2.0 through 3.9.24. Usage of the insecure rand() function within the process of generating the 2FA secret.
Remediation
References
Related Vulnerabilities
WordPress Plugin Yoast SEO Cross-Site Scripting (2.0.1)
Oracle JRE Cryptographic Issues Vulnerability (CVE-2012-5373)
WordPress Plugin MetaSlider Cross-Site Scripting (2.6.2)
WordPress Plugin Crafty Social Buttons Cross-Site Scripting (1.5.6)
Jboss EAP Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2013-0218)