PT-2017-9941 · Open Source Matters · Joomla!

Published

2017-01-23

Updated

2017-01-26

CVE-2016-9081

CVSS v3.1

9.8

Critical

Vector

AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions Joomla! versions 3.4.4 through 3.6.3

Description The issue allows attackers to reset the username, password, and user group assignments, and possibly perform other user account modifications.

Recommendations For versions 3.4.4 through 3.6.3, update to a version outside of this range to resolve the issue.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-255

Related Identifiers

CVE-2016-9081

Affected Products

Joomla!

PT-2017-9941 · Open Source Matters · Joomla!

CVE-2016-9081

Weakness Enumeration

Related Identifiers

Affected Products

References · 5