Description

Cross-site request forgery (CSRF) vulnerability in Joomla! 3.2.0 through 3.3.x and 3.4.x before 3.4.2 allows remote attackers to hijack the authentication of unspecified victims for requests that upload code via unknown vectors.

Remediation

References

CVE-2015-5397

Related Vulnerabilities

WebLogic CVE-2023-22040 Vulnerability (CVE-2023-22040)

Atlassian Confluence Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2016-6668)

WordPress Plugin Light Messages Cross-Site Request Forgery (1.0)

WordPress Plugin WordPress renaming tool by Vlajo Arbitrary File Download (1.0)

WordPress 4.2.x Multiple Vulnerabilities (4.2 - 4.2.25)

Severity

Medium

Classification

CVE-2015-5397 CWE-352

Tags

Missing Update Known Vulnerabilities