Description
An issue was discovered in Joomla! before 3.9.15. Missing token checks in the batch actions of various components cause CSRF vulnerabilities.
Remediation
References
Related Vulnerabilities
WordPress Plugin Ivory Search-WordPress Search Cross-Site Scripting (4.5.10)
CrushFTP Server Server-Side Request Forgery (SSRF) Vulnerability (CVE-2025-32102)
Sqlite CVE-2021-20223 Vulnerability (CVE-2021-20223)
IBM RTC Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2015-4962)
phpMyFAQ Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2017-15808)