Description

Cross-site request forgery (CSRF) vulnerability in Joomla! 3.2.0 through 3.3.x and 3.4.x before 3.4.2 allows remote attackers to hijack the authentication of unspecified victims for requests that upload code via unknown vectors.

Remediation

References

CVE-2015-5397

Related Vulnerabilities

Piwigo Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2020-22148)

Oracle Database Server CVE-2007-0268 Vulnerability (CVE-2007-0268)

phpBB Server-Side Request Forgery (SSRF) Vulnerability (CVE-2019-11767)

WordPress Plugin Mingle Forum Multiple Cross-Site Scripting Vulnerabilities (1.0.33)

WordPress Plugin Timetable and Event Schedule by MotoPress Cross-Site Request Forgery (2.4.1)

Severity

Medium

Classification

CVE-2015-5397 CWE-352

Tags

Missing Update Known Vulnerabilities