CVE-2020-15700

Description

An issue was discovered in Joomla! through 3.9.19. A missing token check in the ajax_install endpoint of com_installer causes a CSRF vulnerability.

Affected packages (1)

• Bitnami/joomla>= 3.7.0, <= 3.9.19

CVSS scores

References (2)

• WEBhttps://developer.joomla.org/security-centre/818-20200701-core-csrf-in-com-installer-ajax-install-endpoint.html
• WEBhttps://nvd.nist.gov/vuln/detail/CVE-2020-15700