Description

An issue was discovered in Joomla! 3.0.0 through 3.9.24. Incorrect ACL checks could allow unauthorized change of the category for an article.

Remediation

References

CVE-2021-26027

Related Vulnerabilities

WordPress Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2012-6633)

PHP Incorrect Calculation of Buffer Size Vulnerability (CVE-2008-0599)

WordPress Plugin FireStorm Professional Real Estate Multiple SQL Injection Vulnerabilities (2.05.01)

WordPress Plugin WordPress Landing Pages SQL Injection (1.2.1)

WordPress Plugin Restricted Site Access Security Bypass (7.3.1)

Severity

Medium

Classification

CVE-2021-26027 CWE-863 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N

Tags

Missing Update Known Vulnerabilities