Description
An issue was discovered in Joomla! 2.5.0 through 3.9.27. CMS functions did not properly termine existing user sessions when a user's password was changed or the user was blocked.
Remediation
References
Related Vulnerabilities
Moodle Permissions, Privileges, and Access Controls Vulnerability (CVE-2011-4589)
WordPress Plugin File Manager Cross-Site Scripting (2.9)
Liferay DXP Uncontrolled Resource Consumption Vulnerability (CVE-2025-43796)
phpMyAdmin 7PK - Security Features Vulnerability (CVE-2016-6626)
WordPress Plugin WordPress Filter Gallery Cross-Site Scripting (0.1.5)