Description

An issue was discovered in Joomla! before 3.9.16. Missing length checks in the user table can lead to the creation of users with duplicate usernames and/or email addresses.

Remediation

References

CVE-2020-10240

Related Vulnerabilities

MySQL CVE-2021-2021 Vulnerability (CVE-2021-2021)

WordPress Plugin Duplicator-WordPress Migration Cross-Site Scripting (1.2.28)

Drupal Core 8.8.x Arbitrary File Overwrite (8.8.0 - 8.8.12)

WordPress Plugin Page Generator Cross-Site Scripting (1.5.8)

WordPress Plugin Bing Site Verification using Meta Tag Cross-Site Scripting (1.0)

Severity

Medium

Classification

CVE-2020-10240 CWE-20 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N

Tags

Missing Update Known Vulnerabilities