Description
An issue was discovered in Joomla! before 3.9.16. Missing token checks in the image actions of com_templates lead to CSRF.
Remediation
References
Related Vulnerabilities
Drupal Improper Input Validation Vulnerability (CVE-2007-6299)
WordPress 2.0.6 'Zend_Hash_Del_Key_Or_Index' SQL Injection Vulnerability (0.6.2 - 2.0.6)
WordPress Plugin WP Database Backup Cross-Site Scripting (5.1.1)
Magento Unrestricted Upload of File with Dangerous Type Vulnerability (CVE-2020-24407)