Description

An issue was discovered in Joomla! Core before 3.8.8. A long running background process, such as remote checks for core or extension updates, could create a race condition where a session that was expected to be destroyed would be recreated.

Remediation

References

CVE-2018-11324

Related Vulnerabilities

WordPress Plugin Software License Manager Cross-Site Scripting (4.4.7)

Microsoft SQL Server CVE-2023-36728 Vulnerability (CVE-2023-36728)

phpMyFAQ Improper Neutralization of Formula Elements in a CSV File Vulnerability (CVE-2018-16651)

WordPress Plugin Broken Link Checker Unspecified Vulnerability (1.10.7)

MySQL CVE-2019-2625 Vulnerability (CVE-2019-2625)

Severity

Medium

Classification

CVE-2018-11324 CWE-362 CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N

Tags

Missing Update Known Vulnerabilities