Description

An issue was discovered in Joomla! before 3.8.13. Inadequate checks on the tags search fields can lead to an access level violation.

Remediation

References

CVE-2018-17857

Related Vulnerabilities

SugarCRM Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2019-17292)

WordPress Plugin Product Size charts for Woocommerce Unspecified Vulnerability (1.0)

Jboss EAP Improper Restriction of XML External Entity Reference Vulnerability (CVE-2017-7464)

WordPress Plugin BadgeOS SQL Injection (3.7.0)

WordPress Plugin Adsense Extreme 'adsensextreme[lang]' Parameter Remote File Include (1.0.3)

Severity

Medium

Classification

CVE-2018-17857 CWE-863 CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N

Tags

Missing Update Known Vulnerabilities