cvelistv5 - cve-2020-13760

CVE-2020-13760 (GCVE-0-2020-13760)

Vulnerability from cvelistv5 – Published: 2020-06-02 19:25 – Updated: 2024-08-04 12:25

Summary

In Joomla! before 3.9.19, missing token checks in com_postinstall lead to CSRF.

Severity ?

No CVSS data available.

CWE

Assigner

mitre

References

URL

Tags

https://developer.joomla.org/security-centre/817-…

x_refsource_MISC

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-04T12:25:16.466Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://developer.joomla.org/security-centre/817-20200605-core-csrf-in-com-postinstall"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "n/a",
          "vendor": "n/a",
          "versions": [
            {
              "status": "affected",
              "version": "n/a"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "In Joomla! before 3.9.19, missing token checks in com_postinstall lead to CSRF."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "n/a",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2020-06-02T19:25:43",
        "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "shortName": "mitre"
      },
      "references": [
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://developer.joomla.org/security-centre/817-20200605-core-csrf-in-com-postinstall"
        }
      ],
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "cve@mitre.org",
          "ID": "CVE-2020-13760",
          "STATE": "PUBLIC"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "n/a",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "n/a"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "n/a"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "In Joomla! before 3.9.19, missing token checks in com_postinstall lead to CSRF."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "n/a"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "https://developer.joomla.org/security-centre/817-20200605-core-csrf-in-com-postinstall",
              "refsource": "MISC",
              "url": "https://developer.joomla.org/security-centre/817-20200605-core-csrf-in-com-postinstall"
            }
          ]
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
    "assignerShortName": "mitre",
    "cveId": "CVE-2020-13760",
    "datePublished": "2020-06-02T19:25:43",
    "dateReserved": "2020-06-02T00:00:00",
    "dateUpdated": "2024-08-04T12:25:16.466Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1",
  "vulnerability-lookup:meta": {
    "fkie_nvd": {
      "configurations": "[{\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:joomla:joomla\\\\!:*:*:*:*:*:*:*:*\", \"versionStartIncluding\": \"3.7.1\", \"versionEndExcluding\": \"3.9.19\", \"matchCriteriaId\": \"3D573E3A-E573-4660-883F-90FAF3C21E7B\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:joomla:joomla\\\\!:3.7.0:-:*:*:*:*:*:*\", \"matchCriteriaId\": \"6EB435B2-1E19-46A3-82EA-47E39850CF52\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:joomla:joomla\\\\!:3.7.0:alpha1:*:*:*:*:*:*\", \"matchCriteriaId\": \"7E50B726-C597-4B58-826C-9474CC7A6A71\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:joomla:joomla\\\\!:3.7.0:alpha2:*:*:*:*:*:*\", \"matchCriteriaId\": \"7C5B60D3-7E7C-4CCD-BDD4-50ABE0B8AD04\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:joomla:joomla\\\\!:3.7.0:beta1:*:*:*:*:*:*\", \"matchCriteriaId\": \"EEF27708-2FD0-4BBD-A3FA-E7E8BFD1AD66\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:joomla:joomla\\\\!:3.7.0:beta2:*:*:*:*:*:*\", \"matchCriteriaId\": \"31E9F58E-A621-4720-8B06-E8BAED5D73B1\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:joomla:joomla\\\\!:3.7.0:beta3:*:*:*:*:*:*\", \"matchCriteriaId\": \"48C406D9-F771-45A5-90CD-A3D48F85DBD2\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:joomla:joomla\\\\!:3.7.0:beta4:*:*:*:*:*:*\", \"matchCriteriaId\": \"57FE4A93-9E8E-4E3F-9C11-8C24EFBC1897\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:joomla:joomla\\\\!:3.7.0:rc1:*:*:*:*:*:*\", \"matchCriteriaId\": \"99090851-FD91-47AC-B9D2-D36B4027C0FD\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:joomla:joomla\\\\!:3.7.0:rc2:*:*:*:*:*:*\", \"matchCriteriaId\": \"EC365315-880A-430B-9321-0CD9F6189BC6\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:joomla:joomla\\\\!:3.7.0:rc3:*:*:*:*:*:*\", \"matchCriteriaId\": \"8029E15B-6221-4457-B02B-3543313D9635\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:joomla:joomla\\\\!:3.7.0:rc4:*:*:*:*:*:*\", \"matchCriteriaId\": \"8BE72698-9832-4EC4-8051-92582CA42699\"}]}]}]",
      "descriptions": "[{\"lang\": \"en\", \"value\": \"In Joomla! before 3.9.19, missing token checks in com_postinstall lead to CSRF.\"}, {\"lang\": \"es\", \"value\": \"En Joomla! versiones anteriores a 3.9.19, la falta de comprobaciones de token en com_postinstall conlleva a un ataque de tipo CSRF.\"}]",
      "id": "CVE-2020-13760",
      "lastModified": "2024-11-21T05:01:47.863",
      "metrics": "{\"cvssMetricV31\": [{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"cvssData\": {\"version\": \"3.1\", \"vectorString\": \"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H\", \"baseScore\": 8.8, \"baseSeverity\": \"HIGH\", \"attackVector\": \"NETWORK\", \"attackComplexity\": \"LOW\", \"privilegesRequired\": \"NONE\", \"userInteraction\": \"REQUIRED\", \"scope\": \"UNCHANGED\", \"confidentialityImpact\": \"HIGH\", \"integrityImpact\": \"HIGH\", \"availabilityImpact\": \"HIGH\"}, \"exploitabilityScore\": 2.8, \"impactScore\": 5.9}], \"cvssMetricV2\": [{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"cvssData\": {\"version\": \"2.0\", \"vectorString\": \"AV:N/AC:M/Au:N/C:P/I:P/A:P\", \"baseScore\": 6.8, \"accessVector\": \"NETWORK\", \"accessComplexity\": \"MEDIUM\", \"authentication\": \"NONE\", \"confidentialityImpact\": \"PARTIAL\", \"integrityImpact\": \"PARTIAL\", \"availabilityImpact\": \"PARTIAL\"}, \"baseSeverity\": \"MEDIUM\", \"exploitabilityScore\": 8.6, \"impactScore\": 6.4, \"acInsufInfo\": false, \"obtainAllPrivilege\": false, \"obtainUserPrivilege\": false, \"obtainOtherPrivilege\": false, \"userInteractionRequired\": true}]}",
      "published": "2020-06-02T20:15:10.713",
      "references": "[{\"url\": \"https://developer.joomla.org/security-centre/817-20200605-core-csrf-in-com-postinstall\", \"source\": \"cve@mitre.org\", \"tags\": [\"Vendor Advisory\"]}, {\"url\": \"https://developer.joomla.org/security-centre/817-20200605-core-csrf-in-com-postinstall\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Vendor Advisory\"]}]",
      "sourceIdentifier": "cve@mitre.org",
      "vulnStatus": "Modified",
      "weaknesses": "[{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"description\": [{\"lang\": \"en\", \"value\": \"CWE-352\"}]}]"
    },
    "nvd": "{\"cve\":{\"id\":\"CVE-2020-13760\",\"sourceIdentifier\":\"cve@mitre.org\",\"published\":\"2020-06-02T20:15:10.713\",\"lastModified\":\"2024-11-21T05:01:47.863\",\"vulnStatus\":\"Modified\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"In Joomla! before 3.9.19, missing token checks in com_postinstall lead to CSRF.\"},{\"lang\":\"es\",\"value\":\"En Joomla! versiones anteriores a 3.9.19, la falta de comprobaciones de token en com_postinstall conlleva a un ataque de tipo CSRF.\"}],\"metrics\":{\"cvssMetricV31\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H\",\"baseScore\":8.8,\"baseSeverity\":\"HIGH\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"NONE\",\"userInteraction\":\"REQUIRED\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"HIGH\",\"integrityImpact\":\"HIGH\",\"availabilityImpact\":\"HIGH\"},\"exploitabilityScore\":2.8,\"impactScore\":5.9}],\"cvssMetricV2\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"2.0\",\"vectorString\":\"AV:N/AC:M/Au:N/C:P/I:P/A:P\",\"baseScore\":6.8,\"accessVector\":\"NETWORK\",\"accessComplexity\":\"MEDIUM\",\"authentication\":\"NONE\",\"confidentialityImpact\":\"PARTIAL\",\"integrityImpact\":\"PARTIAL\",\"availabilityImpact\":\"PARTIAL\"},\"baseSeverity\":\"MEDIUM\",\"exploitabilityScore\":8.6,\"impactScore\":6.4,\"acInsufInfo\":false,\"obtainAllPrivilege\":false,\"obtainUserPrivilege\":false,\"obtainOtherPrivilege\":false,\"userInteractionRequired\":true}]},\"weaknesses\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-352\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:joomla:joomla\\\\!:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"3.7.1\",\"versionEndExcluding\":\"3.9.19\",\"matchCriteriaId\":\"3D573E3A-E573-4660-883F-90FAF3C21E7B\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:joomla:joomla\\\\!:3.7.0:-:*:*:*:*:*:*\",\"matchCriteriaId\":\"6EB435B2-1E19-46A3-82EA-47E39850CF52\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:joomla:joomla\\\\!:3.7.0:alpha1:*:*:*:*:*:*\",\"matchCriteriaId\":\"7E50B726-C597-4B58-826C-9474CC7A6A71\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:joomla:joomla\\\\!:3.7.0:alpha2:*:*:*:*:*:*\",\"matchCriteriaId\":\"7C5B60D3-7E7C-4CCD-BDD4-50ABE0B8AD04\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:joomla:joomla\\\\!:3.7.0:beta1:*:*:*:*:*:*\",\"matchCriteriaId\":\"EEF27708-2FD0-4BBD-A3FA-E7E8BFD1AD66\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:joomla:joomla\\\\!:3.7.0:beta2:*:*:*:*:*:*\",\"matchCriteriaId\":\"31E9F58E-A621-4720-8B06-E8BAED5D73B1\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:joomla:joomla\\\\!:3.7.0:beta3:*:*:*:*:*:*\",\"matchCriteriaId\":\"48C406D9-F771-45A5-90CD-A3D48F85DBD2\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:joomla:joomla\\\\!:3.7.0:beta4:*:*:*:*:*:*\",\"matchCriteriaId\":\"57FE4A93-9E8E-4E3F-9C11-8C24EFBC1897\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:joomla:joomla\\\\!:3.7.0:rc1:*:*:*:*:*:*\",\"matchCriteriaId\":\"99090851-FD91-47AC-B9D2-D36B4027C0FD\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:joomla:joomla\\\\!:3.7.0:rc2:*:*:*:*:*:*\",\"matchCriteriaId\":\"EC365315-880A-430B-9321-0CD9F6189BC6\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:joomla:joomla\\\\!:3.7.0:rc3:*:*:*:*:*:*\",\"matchCriteriaId\":\"8029E15B-6221-4457-B02B-3543313D9635\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:joomla:joomla\\\\!:3.7.0:rc4:*:*:*:*:*:*\",\"matchCriteriaId\":\"8BE72698-9832-4EC4-8051-92582CA42699\"}]}]}],\"references\":[{\"url\":\"https://developer.joomla.org/security-centre/817-20200605-core-csrf-in-com-postinstall\",\"source\":\"cve@mitre.org\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"https://developer.joomla.org/security-centre/817-20200605-core-csrf-in-com-postinstall\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Vendor Advisory\"]}]}}"
  }
}

CERTFR-2020-AVI-335

Vulnerability from certfr_avis - Published: - Updated:

De multiples vulnérabilités ont été découvertes dans Joomla!. Elles permettent à un attaquant de provoquer un contournement de la politique de sécurité et une injection de code indirecte à distance (XSS).

Solution

Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).

None

Impacted products

	Vendor	Product	Description
	N/A	N/A	Joomla versions antérieures à 3.9.19

References

Title

Publication Time

Tags

Bulletin de sécurité Joomla! 3.9.19 du 02 juin 2020

None

vendor-advisory

Show details on source website

JSON

To clipboard

{
  "$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
  "affected_systems": [
    {
      "description": "Joomla versions ant\u00e9rieures \u00e0 3.9.19",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "N/A",
          "scada": false
        }
      }
    }
  ],
  "affected_systems_content": null,
  "content": "## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des\ncorrectifs (cf. section Documentation).\n",
  "cves": [
    {
      "name": "CVE-2020-13761",
      "url": "https://www.cve.org/CVERecord?id=CVE-2020-13761"
    },
    {
      "name": "CVE-2020-13763",
      "url": "https://www.cve.org/CVERecord?id=CVE-2020-13763"
    },
    {
      "name": "CVE-2020-13760",
      "url": "https://www.cve.org/CVERecord?id=CVE-2020-13760"
    },
    {
      "name": "CVE-2020-13762",
      "url": "https://www.cve.org/CVERecord?id=CVE-2020-13762"
    },
    {
      "name": "CVE-2020-11022",
      "url": "https://www.cve.org/CVERecord?id=CVE-2020-11022"
    },
    {
      "name": "CVE-2020-11023",
      "url": "https://www.cve.org/CVERecord?id=CVE-2020-11023"
    }
  ],
  "links": [],
  "reference": "CERTFR-2020-AVI-335",
  "revisions": [
    {
      "description": "Version initiale",
      "revision_date": "2020-06-03T00:00:00.000000"
    }
  ],
  "risks": [
    {
      "description": "Injection de code indirecte \u00e0 distance (XSS)"
    },
    {
      "description": "Contournement de la politique de s\u00e9curit\u00e9"
    }
  ],
  "summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans Joomla!. Elles\npermettent \u00e0 un attaquant de provoquer un contournement de la politique\nde s\u00e9curit\u00e9 et une injection de code indirecte \u00e0 distance (XSS).\n",
  "title": "Multiples vuln\u00e9rabilit\u00e9s dans Joomla!",
  "vendor_advisories": [
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 Joomla! 3.9.19 du 02 juin 2020",
      "url": "https://www.joomla.org/announcements/release-news/5812-joomla-3-9-19.html"
    }
  ]
}

CERTFR-2020-AVI-335

Vulnerability from certfr_avis - Published: - Updated:

Solution

Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).

None

Impacted products

	Vendor	Product	Description
	N/A	N/A	Joomla versions antérieures à 3.9.19

References

Title

Publication Time

Tags

Bulletin de sécurité Joomla! 3.9.19 du 02 juin 2020

None

vendor-advisory

Show details on source website

JSON

To clipboard

{
  "$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
  "affected_systems": [
    {
      "description": "Joomla versions ant\u00e9rieures \u00e0 3.9.19",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "N/A",
          "scada": false
        }
      }
    }
  ],
  "affected_systems_content": null,
  "content": "## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des\ncorrectifs (cf. section Documentation).\n",
  "cves": [
    {
      "name": "CVE-2020-13761",
      "url": "https://www.cve.org/CVERecord?id=CVE-2020-13761"
    },
    {
      "name": "CVE-2020-13763",
      "url": "https://www.cve.org/CVERecord?id=CVE-2020-13763"
    },
    {
      "name": "CVE-2020-13760",
      "url": "https://www.cve.org/CVERecord?id=CVE-2020-13760"
    },
    {
      "name": "CVE-2020-13762",
      "url": "https://www.cve.org/CVERecord?id=CVE-2020-13762"
    },
    {
      "name": "CVE-2020-11022",
      "url": "https://www.cve.org/CVERecord?id=CVE-2020-11022"
    },
    {
      "name": "CVE-2020-11023",
      "url": "https://www.cve.org/CVERecord?id=CVE-2020-11023"
    }
  ],
  "links": [],
  "reference": "CERTFR-2020-AVI-335",
  "revisions": [
    {
      "description": "Version initiale",
      "revision_date": "2020-06-03T00:00:00.000000"
    }
  ],
  "risks": [
    {
      "description": "Injection de code indirecte \u00e0 distance (XSS)"
    },
    {
      "description": "Contournement de la politique de s\u00e9curit\u00e9"
    }
  ],
  "summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans Joomla!. Elles\npermettent \u00e0 un attaquant de provoquer un contournement de la politique\nde s\u00e9curit\u00e9 et une injection de code indirecte \u00e0 distance (XSS).\n",
  "title": "Multiples vuln\u00e9rabilit\u00e9s dans Joomla!",
  "vendor_advisories": [
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 Joomla! 3.9.19 du 02 juin 2020",
      "url": "https://www.joomla.org/announcements/release-news/5812-joomla-3-9-19.html"
    }
  ]
}

FKIE_CVE-2020-13760

Vulnerability from fkie_nvd - Published: 2020-06-02 20:15 - Updated: 2024-11-21 05:01

Severity ?

8.8 (High) - CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Summary

In Joomla! before 3.9.19, missing token checks in com_postinstall lead to CSRF.

References

	URL	Tags
	cve@mitre.org	https://developer.joomla.org/security-centre/817-20200605-core-csrf-in-com-postinstall	Vendor Advisory
	af854a3a-2127-422b-91ae-364da2661108	https://developer.joomla.org/security-centre/817-20200605-core-csrf-in-com-postinstall	Vendor Advisory

Impacted products

Vendor	Product	Version
joomla	joomla\!	*
joomla	joomla\!	3.7.0
joomla	joomla\!	3.7.0
joomla	joomla\!	3.7.0
joomla	joomla\!	3.7.0
joomla	joomla\!	3.7.0
joomla	joomla\!	3.7.0
joomla	joomla\!	3.7.0
joomla	joomla\!	3.7.0
joomla	joomla\!	3.7.0
joomla	joomla\!	3.7.0
joomla	joomla\!	3.7.0

JSON

To clipboard

{
  "configurations": [
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:a:joomla:joomla\\!:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "3D573E3A-E573-4660-883F-90FAF3C21E7B",
              "versionEndExcluding": "3.9.19",
              "versionStartIncluding": "3.7.1",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:joomla:joomla\\!:3.7.0:-:*:*:*:*:*:*",
              "matchCriteriaId": "6EB435B2-1E19-46A3-82EA-47E39850CF52",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:joomla:joomla\\!:3.7.0:alpha1:*:*:*:*:*:*",
              "matchCriteriaId": "7E50B726-C597-4B58-826C-9474CC7A6A71",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:joomla:joomla\\!:3.7.0:alpha2:*:*:*:*:*:*",
              "matchCriteriaId": "7C5B60D3-7E7C-4CCD-BDD4-50ABE0B8AD04",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:joomla:joomla\\!:3.7.0:beta1:*:*:*:*:*:*",
              "matchCriteriaId": "EEF27708-2FD0-4BBD-A3FA-E7E8BFD1AD66",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:joomla:joomla\\!:3.7.0:beta2:*:*:*:*:*:*",
              "matchCriteriaId": "31E9F58E-A621-4720-8B06-E8BAED5D73B1",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:joomla:joomla\\!:3.7.0:beta3:*:*:*:*:*:*",
              "matchCriteriaId": "48C406D9-F771-45A5-90CD-A3D48F85DBD2",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:joomla:joomla\\!:3.7.0:beta4:*:*:*:*:*:*",
              "matchCriteriaId": "57FE4A93-9E8E-4E3F-9C11-8C24EFBC1897",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:joomla:joomla\\!:3.7.0:rc1:*:*:*:*:*:*",
              "matchCriteriaId": "99090851-FD91-47AC-B9D2-D36B4027C0FD",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:joomla:joomla\\!:3.7.0:rc2:*:*:*:*:*:*",
              "matchCriteriaId": "EC365315-880A-430B-9321-0CD9F6189BC6",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:joomla:joomla\\!:3.7.0:rc3:*:*:*:*:*:*",
              "matchCriteriaId": "8029E15B-6221-4457-B02B-3543313D9635",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:joomla:joomla\\!:3.7.0:rc4:*:*:*:*:*:*",
              "matchCriteriaId": "8BE72698-9832-4EC4-8051-92582CA42699",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ]
    }
  ],
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "In Joomla! before 3.9.19, missing token checks in com_postinstall lead to CSRF."
    },
    {
      "lang": "es",
      "value": "En Joomla! versiones anteriores a 3.9.19, la falta de comprobaciones de token en com_postinstall conlleva a un ataque de tipo CSRF."
    }
  ],
  "id": "CVE-2020-13760",
  "lastModified": "2024-11-21T05:01:47.863",
  "metrics": {
    "cvssMetricV2": [
      {
        "acInsufInfo": false,
        "baseSeverity": "MEDIUM",
        "cvssData": {
          "accessComplexity": "MEDIUM",
          "accessVector": "NETWORK",
          "authentication": "NONE",
          "availabilityImpact": "PARTIAL",
          "baseScore": 6.8,
          "confidentialityImpact": "PARTIAL",
          "integrityImpact": "PARTIAL",
          "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P",
          "version": "2.0"
        },
        "exploitabilityScore": 8.6,
        "impactScore": 6.4,
        "obtainAllPrivilege": false,
        "obtainOtherPrivilege": false,
        "obtainUserPrivilege": false,
        "source": "nvd@nist.gov",
        "type": "Primary",
        "userInteractionRequired": true
      }
    ],
    "cvssMetricV31": [
      {
        "cvssData": {
          "attackComplexity": "LOW",
          "attackVector": "NETWORK",
          "availabilityImpact": "HIGH",
          "baseScore": 8.8,
          "baseSeverity": "HIGH",
          "confidentialityImpact": "HIGH",
          "integrityImpact": "HIGH",
          "privilegesRequired": "NONE",
          "scope": "UNCHANGED",
          "userInteraction": "REQUIRED",
          "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
          "version": "3.1"
        },
        "exploitabilityScore": 2.8,
        "impactScore": 5.9,
        "source": "nvd@nist.gov",
        "type": "Primary"
      }
    ]
  },
  "published": "2020-06-02T20:15:10.713",
  "references": [
    {
      "source": "cve@mitre.org",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "https://developer.joomla.org/security-centre/817-20200605-core-csrf-in-com-postinstall"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "https://developer.joomla.org/security-centre/817-20200605-core-csrf-in-com-postinstall"
    }
  ],
  "sourceIdentifier": "cve@mitre.org",
  "vulnStatus": "Modified",
  "weaknesses": [
    {
      "description": [
        {
          "lang": "en",
          "value": "CWE-352"
        }
      ],
      "source": "nvd@nist.gov",
      "type": "Primary"
    }
  ]
}

CNVD-2020-41803

Vulnerability from cnvd - Published: 2020-07-20

Title

Joomla!跨站请求伪造漏洞（CNVD-2020-41803）

Description

Joomla!是美国Open Source Matters团队的一套使用PHP和MySQL开发的开源、跨平台的内容管理系统(CMS)。 Joomla! 3.9.19之前版本中存在安全漏洞，该漏洞源于com_postinstall缺少令牌检查。攻击者可借助格式错误的HTTP请求利用该漏洞执行未授权的操作。

Severity

中

Patch Name

Joomla!跨站请求伪造漏洞（CNVD-2020-41803）的补丁

Patch Description

Joomla!是美国Open Source Matters团队的一套使用PHP和MySQL开发的开源、跨平台的内容管理系统(CMS)。 Joomla! 3.9.19之前版本中存在安全漏洞，该漏洞源于com_postinstall缺少令牌检查。攻击者可借助格式错误的HTTP请求利用该漏洞执行未授权的操作。目前，供应商发布了安全公告及相关补丁信息，修复了此漏洞。

Formal description

目前厂商已发布升级补丁以修复漏洞，补丁获取链接： https://developer.joomla.org/security-centre/817-20200605-core-csrf-in-com-postinstall

Reference

https://nvd.nist.gov/vuln/detail/CVE-2020-13760

Impacted products

Name
Joomla! Joomla! <3.9.19

Show details on source website

JSON

To clipboard

{
  "cves": {
    "cve": {
      "cveNumber": "CVE-2020-13760"
    }
  },
  "description": "Joomla!\u662f\u7f8e\u56fdOpen Source Matters\u56e2\u961f\u7684\u4e00\u5957\u4f7f\u7528PHP\u548cMySQL\u5f00\u53d1\u7684\u5f00\u6e90\u3001\u8de8\u5e73\u53f0\u7684\u5185\u5bb9\u7ba1\u7406\u7cfb\u7edf(CMS)\u3002\n\nJoomla! 3.9.19\u4e4b\u524d\u7248\u672c\u4e2d\u5b58\u5728\u5b89\u5168\u6f0f\u6d1e\uff0c\u8be5\u6f0f\u6d1e\u6e90\u4e8ecom_postinstall\u7f3a\u5c11\u4ee4\u724c\u68c0\u67e5\u3002\u653b\u51fb\u8005\u53ef\u501f\u52a9\u683c\u5f0f\u9519\u8bef\u7684HTTP\u8bf7\u6c42\u5229\u7528\u8be5\u6f0f\u6d1e\u6267\u884c\u672a\u6388\u6743\u7684\u64cd\u4f5c\u3002",
  "formalWay": "\u76ee\u524d\u5382\u5546\u5df2\u53d1\u5e03\u5347\u7ea7\u8865\u4e01\u4ee5\u4fee\u590d\u6f0f\u6d1e\uff0c\u8865\u4e01\u83b7\u53d6\u94fe\u63a5\uff1a\r\nhttps://developer.joomla.org/security-centre/817-20200605-core-csrf-in-com-postinstall",
  "isEvent": "\u901a\u7528\u8f6f\u786c\u4ef6\u6f0f\u6d1e",
  "number": "CNVD-2020-41803",
  "openTime": "2020-07-20",
  "patchDescription": "Joomla!\u662f\u7f8e\u56fdOpen Source Matters\u56e2\u961f\u7684\u4e00\u5957\u4f7f\u7528PHP\u548cMySQL\u5f00\u53d1\u7684\u5f00\u6e90\u3001\u8de8\u5e73\u53f0\u7684\u5185\u5bb9\u7ba1\u7406\u7cfb\u7edf(CMS)\u3002\r\n\r\nJoomla! 3.9.19\u4e4b\u524d\u7248\u672c\u4e2d\u5b58\u5728\u5b89\u5168\u6f0f\u6d1e\uff0c\u8be5\u6f0f\u6d1e\u6e90\u4e8ecom_postinstall\u7f3a\u5c11\u4ee4\u724c\u68c0\u67e5\u3002\u653b\u51fb\u8005\u53ef\u501f\u52a9\u683c\u5f0f\u9519\u8bef\u7684HTTP\u8bf7\u6c42\u5229\u7528\u8be5\u6f0f\u6d1e\u6267\u884c\u672a\u6388\u6743\u7684\u64cd\u4f5c\u3002\u76ee\u524d\uff0c\u4f9b\u5e94\u5546\u53d1\u5e03\u4e86\u5b89\u5168\u516c\u544a\u53ca\u76f8\u5173\u8865\u4e01\u4fe1\u606f\uff0c\u4fee\u590d\u4e86\u6b64\u6f0f\u6d1e\u3002",
  "patchName": "Joomla!\u8de8\u7ad9\u8bf7\u6c42\u4f2a\u9020\u6f0f\u6d1e\uff08CNVD-2020-41803\uff09\u7684\u8865\u4e01",
  "products": {
    "product": "Joomla! Joomla! \u003c3.9.19"
  },
  "referenceLink": "https://nvd.nist.gov/vuln/detail/CVE-2020-13760",
  "serverity": "\u4e2d",
  "submitTime": "2020-06-03",
  "title": "Joomla!\u8de8\u7ad9\u8bf7\u6c42\u4f2a\u9020\u6f0f\u6d1e\uff08CNVD-2020-41803\uff09"
}

GHSA-VXCX-4G2G-X2VR

Vulnerability from github – Published: 2022-05-24 17:18 – Updated: 2022-05-24 17:18

Details

In Joomla! before 3.9.19, missing token checks in com_postinstall lead to CSRF.

Show details on source website

JSON

To clipboard

{
  "affected": [],
  "aliases": [
    "CVE-2020-13760"
  ],
  "database_specific": {
    "cwe_ids": [],
    "github_reviewed": false,
    "github_reviewed_at": null,
    "nvd_published_at": "2020-06-02T20:15:00Z",
    "severity": "MODERATE"
  },
  "details": "In Joomla! before 3.9.19, missing token checks in com_postinstall lead to CSRF.",
  "id": "GHSA-vxcx-4g2g-x2vr",
  "modified": "2022-05-24T17:18:59Z",
  "published": "2022-05-24T17:18:59Z",
  "references": [
    {
      "type": "ADVISORY",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-13760"
    },
    {
      "type": "WEB",
      "url": "https://developer.joomla.org/security-centre/817-20200605-core-csrf-in-com-postinstall"
    }
  ],
  "schema_version": "1.4.0",
  "severity": []
}

GSD-2020-13760

Vulnerability from gsd - Updated: 2023-12-13 01:21

Details

In Joomla! before 3.9.19, missing token checks in com_postinstall lead to CSRF.

Aliases

CVE-2020-13760

Aliases

CVE-2020-13760

JSON

To clipboard

{
  "GSD": {
    "alias": "CVE-2020-13760",
    "description": "In Joomla! before 3.9.19, missing token checks in com_postinstall lead to CSRF.",
    "id": "GSD-2020-13760"
  },
  "gsd": {
    "metadata": {
      "exploitCode": "unknown",
      "remediation": "unknown",
      "reportConfidence": "confirmed",
      "type": "vulnerability"
    },
    "osvSchema": {
      "aliases": [
        "CVE-2020-13760"
      ],
      "details": "In Joomla! before 3.9.19, missing token checks in com_postinstall lead to CSRF.",
      "id": "GSD-2020-13760",
      "modified": "2023-12-13T01:21:46.708537Z",
      "schema_version": "1.4.0"
    }
  },
  "namespaces": {
    "cve.org": {
      "CVE_data_meta": {
        "ASSIGNER": "cve@mitre.org",
        "ID": "CVE-2020-13760",
        "STATE": "PUBLIC"
      },
      "affects": {
        "vendor": {
          "vendor_data": [
            {
              "product": {
                "product_data": [
                  {
                    "product_name": "n/a",
                    "version": {
                      "version_data": [
                        {
                          "version_value": "n/a"
                        }
                      ]
                    }
                  }
                ]
              },
              "vendor_name": "n/a"
            }
          ]
        }
      },
      "data_format": "MITRE",
      "data_type": "CVE",
      "data_version": "4.0",
      "description": {
        "description_data": [
          {
            "lang": "eng",
            "value": "In Joomla! before 3.9.19, missing token checks in com_postinstall lead to CSRF."
          }
        ]
      },
      "problemtype": {
        "problemtype_data": [
          {
            "description": [
              {
                "lang": "eng",
                "value": "n/a"
              }
            ]
          }
        ]
      },
      "references": {
        "reference_data": [
          {
            "name": "https://developer.joomla.org/security-centre/817-20200605-core-csrf-in-com-postinstall",
            "refsource": "MISC",
            "url": "https://developer.joomla.org/security-centre/817-20200605-core-csrf-in-com-postinstall"
          }
        ]
      }
    },
    "nvd.nist.gov": {
      "configurations": {
        "CVE_data_version": "4.0",
        "nodes": [
          {
            "children": [],
            "cpe_match": [
              {
                "cpe23Uri": "cpe:2.3:a:joomla:joomla\\!:3.7.0:-:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:joomla:joomla\\!:3.7.0:alpha1:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:joomla:joomla\\!:3.7.0:alpha2:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:joomla:joomla\\!:3.7.0:beta1:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:joomla:joomla\\!:3.7.0:beta2:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:joomla:joomla\\!:3.7.0:beta3:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:joomla:joomla\\!:3.7.0:beta4:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:joomla:joomla\\!:3.7.0:rc1:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:joomla:joomla\\!:3.7.0:rc2:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:joomla:joomla\\!:3.7.0:rc3:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:joomla:joomla\\!:3.7.0:rc4:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:joomla:joomla\\!:*:*:*:*:*:*:*:*",
                "cpe_name": [],
                "versionEndExcluding": "3.9.19",
                "versionStartIncluding": "3.7.1",
                "vulnerable": true
              }
            ],
            "operator": "OR"
          }
        ]
      },
      "cve": {
        "CVE_data_meta": {
          "ASSIGNER": "cve@mitre.org",
          "ID": "CVE-2020-13760"
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "en",
              "value": "In Joomla! before 3.9.19, missing token checks in com_postinstall lead to CSRF."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "en",
                  "value": "CWE-352"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "https://developer.joomla.org/security-centre/817-20200605-core-csrf-in-com-postinstall",
              "refsource": "MISC",
              "tags": [
                "Vendor Advisory"
              ],
              "url": "https://developer.joomla.org/security-centre/817-20200605-core-csrf-in-com-postinstall"
            }
          ]
        }
      },
      "impact": {
        "baseMetricV2": {
          "acInsufInfo": false,
          "cvssV2": {
            "accessComplexity": "MEDIUM",
            "accessVector": "NETWORK",
            "authentication": "NONE",
            "availabilityImpact": "PARTIAL",
            "baseScore": 6.8,
            "confidentialityImpact": "PARTIAL",
            "integrityImpact": "PARTIAL",
            "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P",
            "version": "2.0"
          },
          "exploitabilityScore": 8.6,
          "impactScore": 6.4,
          "obtainAllPrivilege": false,
          "obtainOtherPrivilege": false,
          "obtainUserPrivilege": false,
          "severity": "MEDIUM",
          "userInteractionRequired": true
        },
        "baseMetricV3": {
          "cvssV3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 8.8,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "exploitabilityScore": 2.8,
          "impactScore": 5.9
        }
      },
      "lastModifiedDate": "2020-10-19T14:30Z",
      "publishedDate": "2020-06-02T20:15Z"
    }
  }
}

Tags

Taxonomy of the tags.

All sightings related to this event Export sightings related to this event

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or observed by the user.
Confirmed: The vulnerability has been validated from an analyst's perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
Not confirmed: The user expressed doubt about the validity of the vulnerability.
Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Detection rules are retrieved from Rulezet.

Action not permitted

CVE-2020-13760 (GCVE-0-2020-13760)

CERTFR-2020-AVI-335

Solution

CERTFR-2020-AVI-335

Solution

FKIE_CVE-2020-13760

CNVD-2020-41803

GHSA-VXCX-4G2G-X2VR

GSD-2020-13760

Tags

Sightings

Nomenclature