Acunetix DAST powers runtime capabilities for Invicti’s complete AppSec platform. Visit Invicti for more.

WEB APPLICATION VULNERABILITIES Standard & Premium

Joomla Improper Input Validation Vulnerability (CVE-2021-23131)

Description

An issue was discovered in Joomla! 3.2.0 through 3.9.24. Missing input validation within the template manager.

Remediation

References

Related Vulnerabilities

WordPress Plugin Integration for Contact Form 7 and Constant Contact Cross-Site Scripting (1.0.8)

IBM WebSEAL Missing Authorization Vulnerability (CVE-2020-4499)

WordPress Plugin WordPress Social Login and Register (Discord, Google, Twitter, LinkedIn) Security Bypass (7.6.4)

Drupal Core 7.x Security Bypass (7.0 - 7.4)

WordPress Plugin Google Forms Server-Side Request Forgery (0.91)

Severity

High

Classification

CVE-2021-23131 CWE-20 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Tags

Missing Update Known Vulnerabilities