CVE-2024-27187

CVE-2024-27187: [20240804] - Core - Improper ACL for backend profile view

Vendor Joomla! Project
Product Joomla! CMS
Weakness CWE-284
Published August 20, 2024
Last update August 22, 2024

CVSS base score

What the vulnerability does

01Description

Improper Access Controls allows backend users to overwrite their username when disallowed.

Key dates

02Disclosure timeline

August 20, 2024 CVE published
August 22, 2024 Record updated