Description
Sucuri reported a vulnerability in Akeeba Backup for Joomla! that could allow an attacker to list and download backups created with the Akeeba extension. This vulnerability is present on Joomla websites running Akeeba that have the "Enable front-end and remote backup" option activated.
Remediation
Upgrade to the latest version of Akeeba Backup for Joomla!.
References
Related Vulnerabilities
Cisco RV Series Authentication Bypass (CVE-2021-1472)
WordPress Plugin Swiss Toolkit For WP Security Bypass (1.0.7)
Drupal Core 8.8.0 Security Bypass (8.8.0)
WordPress Plugin Post Grid Gutenberg Blocks and WordPress Blog-PostX Security Bypass (4.1.2)
WordPress Plugin YITH WooCommerce Bulk Product Editing Security Bypass (1.2.13)