Description

An issue was discovered in Joomla! before 3.8.12. Inadequate checks in the InputFilter class could allow specifically prepared phar files to pass the upload filter.

Remediation

References

CVE-2018-15882

Related Vulnerabilities

WordPress Plugin WooCommerce Predictive Search Cross-Site Scripting (1.0.5)

TYPO3 Other Vulnerability (CVE-2006-0327)

WordPress Plugin Resume Submissions & Job Postings Cross-Site Scripting (2.5.3)

MySQL CVE-2016-0643 Vulnerability (CVE-2016-0643)

RubyGems Improper Input Validation Vulnerability (CVE-2017-0901)

Severity

Critical

Classification

CVE-2018-15882 CWE-434 CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Tags

Missing Update Known Vulnerabilities