Description
Joomla! Core is prone to a prototype pollution vulnerability. Exploiting this issue may allow attackers to add or modify existing properties of an "Object", when controlling part of it's structure. Joomla! Core versions 3.x.x ranging from 3.0.0 and up to and including 3.9.4 are vulnerable.
Remediation
Update to Joomla! Core version 3.9.5 or latest
References
Related Vulnerabilities
WordPress Plugin Contact Bank-Contact Form Builder for WordPress Unspecified Vulnerability (2.1.26)
Joomla! Core Multiple Cross-Site Scripting Vulnerabilities (2.5.0 - 3.9.1)
MediaWiki Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2012-1580)
Oracle JRE CVE-2018-2663 Vulnerability (CVE-2018-2663)
WordPress Plugin Invite Anyone Multiple Vulnerabilities (1.3.15)