Description
An issue was discovered in Joomla! before 3.8.13. If an attacker gets access to the mail account of an user who can approve admin verifications in the registration process, he can activate himself.
Remediation
References
Related Vulnerabilities
WordPress Plugin MailPoet Newsletters (Previous) Multiple Vulnerabilities (2.7.2)
WordPress Plugin Simple Sitemap-Create a Responsive HTML Sitemap Unspecified Vulnerability (1.53)
Atlassian Jira Missing Authorization Vulnerability (CVE-2019-15013)
WordPress Plugin Quiz and Survey Master (QSM)-Easy Quiz and Survey Maker SQL Injection (7.3.4)
WordPress Plugin Download Monitor Unspecified Vulnerability (4.4.6)