Get a demo
100% Signal 0% Noise Invicti Logo - The Largest Dynamic Application Security Solutions Provider In The World Get a demo
Joomla Vulnerability - CVE-2019-14654 - Vulnerability Database
Joomla

Joomla Vulnerability - CVE-2019-14654

High
Reference: CVE-2019-14654
NVD Link: https://nvd.nist.gov/vuln/detail/CVE-2019-14654
Title: Joomla Vulnerability
Overview:

In Joomla 3.9.7 and 3.9.8 inadequate filtering allows users authorised to create custom fields to manipulate the filtering options and inject an unvalidated option. In other words the filter attribute in subform fields allows remote code execution. This is fixed in 3.9.9.