Joomla Improper Neutralization of Special Elements used in an LDAP Query (LDAP Injection) Vulnerability - CVE-2017-14596 - Vulnerability Database
Joomla Improper Neutralization of Special Elements used in an LDAP Query (LDAP Injection) Vulnerability - CVE-2017-14596
Critical
Reference:
CVE-2017-14596
Title:
Joomla Improper Neutralization of Special Elements used in an LDAP Query (LDAP Injection) Vulnerability
Overview:
In Joomla before 3.8.0 inadequate escaping in the LDAP authentication plugin can result in a disclosure of a username and password.