Charlottezweb

General Conversation => Script Chat => Topic started by: Jason on May 26, 2021, 10:02:49 AM

Title: Joomla Security Notice :: May 26, 2021
Post by: Jason on May 26, 2021, 10:02:49 AM
Joomla has emailed a security announcement.  If you use Joomla for your site, please check your version and upgrade accordingly.

The announcement is available on their site here:

https://developer.joomla.org/security-centre.html

QuoteJoomla! Security News

________________________________________
•   [20210503] - Core - CSRF in data download endpoints
•   [20210502] - Core - CSRF in AJAX reordering endpoint
•   [20210501] - Core - Adding HTML to the executable block list of MediaHelper::canUpload
[20210503] - Core - CSRF in data download endpoints
Posted: 25 May 2021 08:00 AM PDT
> Project: Joomla!
> SubProject: CMS
> Impact: Low
> Severity: Low
> Versions: 3.0.0 - 3.9.26
> Exploit type: CSRF
> Reported Date: 2021-05-07
> Fixed Date: 2021-05-25
> CVE Number: CVE-2021-26034
Description
A missing token check causes a CSRF vulnerability in data download endpoints in com_banners and com_sysinfo.
Affected Installs
Joomla! CMS versions 3.0.0 - 3.9.26
Solution
Upgrade to version 3.9.27
Contact
The JSST at the Joomla! Security Centre.
Reported By: Phil Taylor
 
 

[20210502] - Core - CSRF in AJAX reordering endpoint
Posted: 25 May 2021 08:00 AM PDT
> Project: Joomla!
> SubProject: CMS
> Impact: Low
> Severity: Low
> Versions: 3.0.0 - 3.9.26
> Exploit type: CSRF
> Reported Date: 2021-05-07
> Fixed Date: 2021-05-25
> CVE Number: CVE-2021-26033
Description
A missing token check causes a CSRF vulnerability in the AJAX reordering endpoint.
Affected Installs
Joomla! CMS versions 3.0.0 - 3.9.26
Solution
Upgrade to version 3.9.27
Contact
The JSST at the Joomla! Security Centre.
Reported By: Phil Taylor
 
 

[20210501] - Core - Adding HTML to the executable block list of MediaHelper::canUpload
Posted: 25 May 2021 08:00 AM PDT
> Project: Joomla!
> SubProject: CMS
> Impact: Low
> Severity: Low
> Versions: 3.0.0 - 3.9.26
> Exploit type: XSS
> Reported Date: 2021-03-05
> Fixed Date: 2021-05-25
> CVE Number: CVE-2021-26032
Description
HTML was missing in the executable block list of MediaHelper::canUpload, leading to XSS attack vectors.
Affected Installs
Joomla! CMS versions 3.0.0 - 3.9.26
Solution
Upgrade to version 3.9.27
Contact
The JSST at the Joomla! Security Centre.
Reported By: Adrian Tiron, Fortbridge