Unrated severityNVD Advisory· Published Aug 5, 2019· Updated Aug 5, 2024
CVE-2019-14654
CVE-2019-14654
Description
In Joomla! 3.9.7 and 3.9.8, inadequate filtering allows users authorised to create custom fields to manipulate the filtering options and inject an unvalidated option. In other words, the filter attribute in subform fields allows remote code execution. This is fixed in 3.9.9.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- Joomla!/Joomla!description
Patches
Vulnerability mechanics
References
1News mentions
0No linked articles in our index yet.