FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

Joomla! -- Core - CSRF Protection vulnerabilities

Affected packages
3.2.0 <= joomla3 < 3.4.2

Details

VuXML ID ec2d1cfd-7ac5-11e5-b35a-002590263bf5
Discovery 2015-06-30
Entry 2015-10-25

The JSST and the Joomla! Security Center report:

[20150602] - Core - CSRF Protection

Lack of CSRF checks potentially enabled uploading malicious code.

References

CVE Name CVE-2015-5397
URL http://developer.joomla.org/security-centre/618-20150602-core-remote-code-execution.html
URL https://www.joomla.org/announcements/release-news/5589-joomla-3-4-2-released.html