Get a demo
100% Signal 0% Noise Invicti Logo - The Largest Dynamic Application Security Solutions Provider In The World Get a demo
Joomla Unrestricted Upload of File with Dangerous Type Vulnerability - CVE-2017-7989 - Vulnerability Database
Joomla

Joomla Unrestricted Upload of File with Dangerous Type Vulnerability - CVE-2017-7989

Medium
Reference: CVE-2017-7989
NVD Link: https://nvd.nist.gov/vuln/detail/CVE-2017-7989
Title: Joomla Unrestricted Upload of File with Dangerous Type Vulnerability
Overview:

In Joomla 3.2.0 through 3.6.5 (fixed in 3.7.0) inadequate MIME type checks allowed low-privilege users to upload swf files even if they were explicitly forbidden.