Acunetix DAST powers runtime capabilities for Invicti’s complete AppSec platform. Visit Invicti for more.

WEB APPLICATION VULNERABILITIES Standard & Premium

Joomla CVE-2019-15028 Vulnerability (CVE-2019-15028)

Description

In Joomla! before 3.9.11, inadequate checks in com_contact could allow mail submission in disabled forms.

Remediation

References

Related Vulnerabilities

Squid Missing Authentication for Critical Function Vulnerability (CVE-2019-12524)

WordPress Plugin FG Joomla to WordPress Cross-Site Scripting (3.30.0)

MySQL CVE-2020-2892 Vulnerability (CVE-2020-2892)

WordPress Plugin HB AUDIO GALLERY LITE Arbitrary File Download (1.0.0)

WebLogic Missing Authentication for Critical Function Vulnerability (CVE-2025-21535)

Severity

Medium

Classification

CVE-2019-15028 CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N

Tags

Missing Update Known Vulnerabilities