Main Vulnerability Database Exploits ID:5495 - Exploit for Permissions, Privileges, and Access Controls in Joomla! - CVE-2021-23132

ID:5495 - Exploit for Permissions, Privileges, and Access Controls in Joomla! - CVE-2021-23132

Published: May 27, 2021

Vulnerability identifier: #VU51116

Vulnerability risk: Medium

CVE-ID: CVE-2021-23132

CWE-ID: CWE-264

Exploitation vector: Remote access

Vulnerable software:
Joomla!

Link to public exploit:

https://github.com/HoangKien1020/CVE-2021-23132

Vulnerability description

The vulnerability allows a remote attacker to bypass implemented security restrictions.

The vulnerability exists within the com_media component. A remote attacker can use a specially crafted HTTP request and upload images to paths that are not intended for image uploads.

Remediation

Install updates from vendor's website.

ID:5495 - Exploit for Permissions, Privileges, and Access Controls in Joomla! - CVE-2021-23132

Link to public exploit:

Vulnerability description

Remediation

Please verify you're human