Description
In Joomla! 1.6.0 through 3.6.5 (fixed in 3.7.0), inadequate filtering of form contents allows overwriting the author of an article.
Remediation
References
Related Vulnerabilities
WordPress Plugin WordPress Download Manager Cross-Site Scripting (2.5.8)
WordPress Plugin Integration for Contact Form 7 and Pipedrive Cross-Site Scripting (1.0.9)
WordPress Plugin Wordfence Security-Firewall & Malware Scan Cross-Site Scripting (7.6.0)
Jboss EAP Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2014-7853)
Django Cleartext Transmission of Sensitive Information Vulnerability (CVE-2019-12781)