CVE-2019-9920

Опубликовано: 29 мар. 2019

Источник: nvd

CVSS3: 7.7

CVSS3: 8.8

CVSS2: 6.5

EPSS Низкий

Описание

An issue was discovered in the Harmis JE Messenger component 1.2.2 for Joomla!. It is possible to perform an action within the context of the account of another user.

Ссылки

https://extensions.joomla.org/extension/je-messenger/
Product
Third Party Advisory
https://github.com/azd-cert/CVE/blob/master/CVEs/CVE-2019-9920.md
Third Party Advisory
https://extensions.joomla.org/extension/je-messenger/
Product
Third Party Advisory
https://github.com/azd-cert/CVE/blob/master/CVEs/CVE-2019-9920.md
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:harmistechnology:je_messenger:1.2.2:*:*:*:*:joomla\!:*:*

EPSS

Процентиль: 55%

0.0032

Низкий

7.7 High

CVSS3

8.8 High

CVSS3

6.5 Medium

CVSS2

Дефекты

NVD-CWE-noinfo

Связанные уязвимости

GHSA-vq22-g44v-mx73

CVSS3: 8.8

github

больше 3 лет назад

An issue was discovered in the Harmis JE Messenger component 1.2.2 for Joomla!. It is possible to perform an action within the context of the account of another user.

EPSS

Процентиль: 55%

0.0032

Низкий

7.7 High

CVSS3

8.8 High

CVSS3

6.5 Medium

CVSS2

Дефекты

NVD-CWE-noinfo