Description

An issue was discovered in Joomla! 3.0.0 through 3.9.24. com_media allowed paths that are not intended for image uploads

Remediation

References

CVE-2021-23132

Related Vulnerabilities

WebLogic CVE-2021-35617 Vulnerability (CVE-2021-35617)

WordPress Plugin XVE Various Embed Multiple Cross-Site Scripting Vulnerabilities (1.0.3)

RubyGems Loop with Unreachable Exit Condition ('Infinite Loop') Vulnerability (CVE-2018-1000075)

WordPress Plugin Word of the day Arbitrary File Upload (1.0)

WordPress Plugin Floating Social Media Links 'wpp' Parameter Multiple Remote File Include Vulnerabilities (1.4.2)

Severity

High

Classification

CVE-2021-23132 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

Tags

Missing Update Known Vulnerabilities