Main
Vulnerability Database
Exploits
ID:1962 - Exploit for Cross-site request forgery in Joomla! - CVE-2017-9934
ID:1962 - Exploit for Cross-site request forgery in Joomla! - CVE-2017-9934
Published: March 18, 2020
Vulnerability identifier: #VU7317
Vulnerability risk: Low
CVE-ID: CVE-2017-9934
CWE-ID: CWE-352
Exploitation vector: Remote access
Vulnerable software:
Joomla!
Joomla!
Link to public exploit:
Vulnerability description
The vulnerability allows a remote attacker to perform CSRF attack.
The vulnerability exists due to missing CSRF token. A remote attacker can create a specially crafted web page, trick the victim into visiting it and execute arbitrary HTML and JavaScript code in victim's browser in context of vulnerable website.
The vulnerability exists due to missing CSRF token. A remote attacker can create a specially crafted web page, trick the victim into visiting it and execute arbitrary HTML and JavaScript code in victim's browser in context of vulnerable website.
Remediation
Update to version 3.7.3.