CVE-2015-8563 โ€” Cross-Site Request Forgery in Joomla !

CWE-352 โ€” Cross-Site Request Forgery3 documents3 sources
Severity
6.8MEDIUMNVD
EPSS
0.0%
top 99.69%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Joomla !
Timeline
PublishedDec 16
Latest updateMay 17

Description

Cross-site request forgery (CSRF) vulnerability in the com_templates component in Joomla! 3.2.0 through 3.3.x and 3.4.x before 3.4.6 allows remote attackers to hijack the authentication of unspecified victims via unknown vectors.

CVSS vector

AV:N/AC:M/C:P/I:P/A:PExploitability: 8.6 | Impact: 6.4

Affected Packages1 packages

โ–ถNVDjoomla/joomla_!16 versions+15

๐Ÿ”ดVulnerability Details

2
GHSA
GHSA-w4j7-rv83-p87x: Cross-site request forgery (CSRF) vulnerability in the com_templates component in Joomla! 3โ†—2022-05-17
โ–ถ
CVEList
CVE-2015-8563: Cross-site request forgery (CSRF) vulnerability in the com_templates component in Joomla! 3โ†—2015-12-16
โ–ถ
CVE-2015-8563 โ€” Cross-Site Request Forgery in Joomla ! | cvebase