Site icon DataSec Peripherals Pvt Ltd

Incorrect Access Control Vulnerability in Joomla

Original Issue Date :August 31, 2021

Severity Rating: HIGH

Software Affected

Joomla CMS versions 4.0.0

Overview

A vulnerability has been reported in Joomla which could be exploited by an attacker to obtain access to sensitive information on a targeted system.

Description

This vulnerability exists in the com_media deletion endpoint file of Joomla due to incorrect checking of users permissions.

Successful exploitation of this vulnerability could allow the attacker to bypass security restrictions leading to deletion of sensitive information on the targeted system.

Solution

Upgrade to Joomla CMS versions 4.0.1

Exit mobile version