Vulnerability: Unauthorized Manipulation of Joomla! Update Server URL

CVE-2019-12764 · MEDIUM

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N

CVE-2019-12764

An issue was discovered in Joomla! before 3.9.7. The update server URL of com_joomlaupdate can be manipulated by non Super-Admin users.

Learn more about our Cis Benchmark Audit For Server Software.