CVE-2020-13760

HIGH

8.8

Descricao

In Joomla! before 3.9.19, missing token checks in com_postinstall lead to CSRF.

Pontuacao CVSS v3.18.8

SeveridadeHIGH

Vetor CVSSCVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Vetor de ataqueNETWORK

ComplexidadeLOW

Privilegios necessariosNONE

Interacao do usuarioREQUIRED

Publicado6/2/2020

Ultima modificacao11/21/2024

Fontenvd

Avistamentos honeypot0

joomla:joomla\!

CWE-352

Sem correlacoes registradas

This product uses data from the NVD API but is not endorsed or certified by the NVD.