Description
In Joomla! before 3.9.19, missing token checks in com_postinstall lead to CSRF.
Remediation
References
Related Vulnerabilities
Django Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2011-0696)
PHP Improper Handling of Exceptional Conditions Vulnerability (CVE-2014-1943)
WordPress Plugin Ultimate Responsive Image Slider Unspecified Vulnerability (3.3.2)
WordPress Plugin ULTIMATE VIDEO GALLERY Cross-Site Scripting (1.4)
Jenkins Incorrect Authorization Vulnerability (CVE-2021-21609)