CVE-2020-10241 — Cross-Site Request Forgery in Joomla !

Severity

8.8HIGHNVD

EPSS

0.0%

top 89.18%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Timeline

PublishedMar 16

Latest updateMay 24

Description

An issue was discovered in Joomla! before 3.9.16. Missing token checks in the image actions of com_templates lead to CSRF.

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:HExploitability: 2.8 | Impact: 5.9

▶NVDjoomla/joomla_!3.2.0 — 3.9.16

GHSA

GHSA-2f69-8qxx-qqc8: An issue was discovered in Joomla! before 3↗2022-05-24

▶

CVEList

CVE-2020-10241: An issue was discovered in Joomla! before 3↗2020-03-16

▶