CVE-2018-11327

Опубликовано: 22 мая 2018

Источник: nvd

CVSS3: 4.3

CVSS2: 4

EPSS Низкий

Описание

An issue was discovered in Joomla! Core before 3.8.8. Inadequate checks allowed users to see the names of tags that were either unpublished or published with restricted view permission.

Ссылки

http://www.securityfocus.com/bid/104273
Third Party Advisory
VDB Entry
http://www.securitytracker.com/id/1040966
Third Party Advisory
VDB Entry
https://developer.joomla.org/security-centre/731-20180503-core-information-disclosure-about-unpublished-tags.html
Vendor Advisory
http://www.securityfocus.com/bid/104273
Third Party Advisory
VDB Entry
http://www.securitytracker.com/id/1040966
Third Party Advisory
VDB Entry
https://developer.joomla.org/security-centre/731-20180503-core-information-disclosure-about-unpublished-tags.html
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:joomla:joomla\!:*:*:*:*:*:*:*:*

Версия до 3.8.8 (исключая)

EPSS

Процентиль: 3%

0.00015

Низкий

4.3 Medium

CVSS3

4 Medium

CVSS2

Дефекты

CWE-200

Связанные уязвимости

GHSA-jj8j-vpm5-cx28