Description
An issue was discovered in Joomla! before 3.9.15. A missing CSRF token check in the LESS compiler of com_templates causes a CSRF vulnerability.
Remediation
References
Related Vulnerabilities
Tornado Observable Differences in Behavior to Error Inputs Vulnerability (CVE-2014-9720)
WordPress Plugin Asgaros Forum Cross-Site Scripting (1.15.13)
WordPress Plugin Simple Personal Message SQL Injection (1.0.3)
WordPress Plugin RSS Redirect & Feedburner Alternative Unspecified Vulnerability (1.9)
WordPress Plugin WPML (WordPress Multilingual) Cross-Site Request Forgery (4.3.6)