Description
Joomla! before 1.0.11 does not limit access to the Admin Popups functionality, which has unknown impact and attack vectors.
Remediation
References
Related Vulnerabilities
WordPress Plugin Gutenberg Forms-WordPress Form Builder Arbitrary File Upload (2.2.9)
Liferay Portal Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2021-33338)
WordPress Plugin Row Seats Core Unspecified Vulnerability (2.66)
XWiki Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2023-46731)