Description

An issue was discovered in Joomla! 2.5.0 through 3.9.22. The autosuggestion feature of com_finder did not respect the access level of the corresponding terms.

Remediation

References

CVE-2020-35610

Related Vulnerabilities

MySQL CVE-2017-10276 Vulnerability (CVE-2017-10276)

WordPress Plugin Membership Simplified Multiple SQL Injection Vulnerabilities (1.58)

MySQL Other Vulnerability (CVE-2001-1454)

WordPress Plugin Posts in Page Local File Inclusion (1.2.4)

phpMyAdmin Improper Input Validation Vulnerability (CVE-2016-9863)

Severity

High

Classification

CVE-2020-35610 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Tags

Missing Update Known Vulnerabilities