CVE-2020-35616

HIGH7.5EPSS 0.01%

[20201107] - Core - Write ACL violation in multiple core views

Published: 4/3/2025Modified: 5/20/2025

Description

An issue was discovered in Joomla! 1.7.0 through 3.9.22. Lack of input validation while handling ACL rulesets can cause write ACL violations.

Affected packages (1)

CVSS scores

SourceVersionSeverityVector
osvCVSS 3.1HIGH7.5CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

References (2)