Description

Joomla! 3.4.4 through 3.6.3 allows attackers to reset username, password, and user group assignments and possibly perform other user account modifications via unspecified vectors.

Remediation

References

CVE-2016-9081

Related Vulnerabilities

Oracle HTTP Server Other Vulnerability (CVE-2002-0655)

e107 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2015-1041)

IBM WebSEAL CVE-2018-1813 Vulnerability (CVE-2018-1813)

MySQL CVE-2018-2758 Vulnerability (CVE-2018-2758)

WordPress 4.9.x Multiple Vulnerabilities (4.9 - 4.9.22)

Severity

Critical

Classification

CVE-2016-9081 CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Tags

Missing Update Known Vulnerabilities