Description
In Joomla! before 3.9.19, missing token checks in com_postinstall lead to CSRF.
Remediation
References
Related Vulnerabilities
WordPress Plugin Contact Bank-Contact Form Builder for WordPress Cross-Site Scripting (2.1.22)
WordPress Plugin CoolClock-a Javascript Analog Clock Cross-Site Scripting (4.3.4)
WordPress Plugin Breezing Forms Cross-Site Scripting (1.2.7.33)
WordPress Plugin Custom css-js-php Cross-Site Request Forgery (2.0.7)