Description
An issue was discovered in Joomla! 4.0.0 through 4.2.4. A missing ACL check allows non super-admin users to access com_actionlogs.
Remediation
References
Related Vulnerabilities
WordPress Plugin WP Smart Import: Import any XML File to WordPress Cross-Site Scripting (1.0.2)
Jboss EAP Deserialization of Untrusted Data Vulnerability (CVE-2019-14540)
WebLogic Deserialization of Untrusted Data Vulnerability (CVE-2019-17571)
Moodle Permissions, Privileges, and Access Controls Vulnerability (CVE-2014-0009)
Oracle Database Server CVE-2011-2243 Vulnerability (CVE-2011-2243)