First published: Thu Mar 04 2021(Updated: )
An issue was discovered in Joomla! 3.0.0 through 3.9.24. com_media allowed paths that are not intended for image uploads
Credit: security@joomla.org
Affected Software | Affected Version | How to fix |
---|---|---|
Joomla Joomla\! | >=3.0.0<3.9.25 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
The vulnerability ID for this issue is CVE-2021-23132.
The severity of CVE-2021-23132 is high with a severity value of 7.5.
The affected software for CVE-2021-23132 is Joomla! versions 3.0.0 through 3.9.24.
CVE-2021-23132 allows paths that are not intended for image uploads in the com_media component of Joomla!, which can potentially lead to unauthorized access to sensitive files.
To fix CVE-2021-23132, update Joomla! to version 3.9.25 or higher.