Description

An issue was discovered in Joomla! Core before 3.8.8. Inadequate checks allowed users to see the names of tags that were either unpublished or published with restricted view permission.

Remediation

References

CVE-2018-11327

Related Vulnerabilities

Oracle Application Server CVE-2008-0347 Vulnerability (CVE-2008-0347)

Ampache Deserialization of Untrusted Data Vulnerability (CVE-2017-18375)

phpMyAdmin Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2012-4345)

Atlassian Jira CVE-2021-26076 Vulnerability (CVE-2021-26076)

Apache HTTP Server Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2008-0455)

Severity

Medium

Classification

CVE-2018-11327 CWE-200 CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N

Tags

Missing Update Known Vulnerabilities