Description

An issue was discovered in Joomla! before 3.9.21. Lack of input validation in the vote feature of com_content leads to an open redirect.

Remediation

References

CVE-2020-24598

Related Vulnerabilities

Jenkins Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2019-10352)

Joomla! Core 1.7.x Cross-Site Scripting (1.7.0 - 1.7.2)

Magento Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2019-7851)

OpenSSL Improper Input Validation Vulnerability (CVE-2014-3513)

WebLogic CVE-2022-21441 Vulnerability (CVE-2022-21441)

Severity

Medium

Classification

CVE-2020-24598 CWE-601 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

Tags

Missing Update Known Vulnerabilities