Description

An issue was discovered in Joomla! before 3.8.12. Inadequate checks in the InputFilter class could allow specifically prepared phar files to pass the upload filter.

Remediation

References

CVE-2018-15882

Related Vulnerabilities

Jenkins Allocation of Resources Without Limits or Throttling Vulnerability (CVE-2021-21607)

Apache Traffic Server Uncontrolled Resource Consumption Vulnerability (CVE-2018-8005)

Ruby Cryptographic Issues Vulnerability (CVE-2012-5371)

WordPress Plugin Custom Dashboard & Login Page-AGCA Cross-Site Request Forgery (6.5.4)

WordPress Plugin Photo Gallery by 10Web-Mobile-Friendly Image Gallery Cross-Site Scripting (1.5.67)

Severity

Critical

Classification

CVE-2018-15882 CWE-434 CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Tags

Missing Update Known Vulnerabilities