Description
Sucuri reported a vulnerability in Akeeba Backup for Joomla! that could allow an attacker to list and download backups created with the Akeeba extension. This vulnerability is present on Joomla websites running Akeeba that have the "Enable front-end and remote backup" option activated.
Remediation
Upgrade to the latest version of Akeeba Backup for Joomla!.
References
Related Vulnerabilities
Drupal Core 8.x.x Security Bypass (8.0.0 - 8.6.18)
SharePoint Authentication bypass (CVE-2023-29357)
WordPress Plugin Improved Product Options for WooCommerce Security Bypass (5.2.0)
WordPress Plugin User Activity Security Bypass (1.0.1)
WordPress Plugin The Plus Addons for Elementor Security Bypass (4.1.6)