BIT-JOOMLA-2024-21723 — Vulnetix

BIT-JOOMLA-2024-21723 PUBLISHED CVSS 4.300000190734863 MEDIUM

Inadequate parsing of URLs could result into an open redirect.

Risk Scores

CVSS 3.1

4.300000190734863

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N

Affected Products

Vendor	Product	Versions
Joomla! Project	Joomla! CMS	1.5.0-3.10.14, 4.0.0-4.4.2, 5.0.0-5.0.2

Exploit Intelligence

https://developer.joomla.org/security-centre/926-20240202-core-open-redirect-in-installation-application.html (circl)
CIRCL seen: CVE-2024-21723 (circl-sighting)
CIRCL seen: CVE-2024-21723 (circl-sighting)
CIRCL seen: CVE-2024-21723 (circl-sighting)

Timeline

Feb 20, 2024 CVE Published
Feb 22, 2024 PoC Published
Feb 29, 2024 PoC Published
Feb 29, 2024 PoC Published

References

https://developer.joomla.org/security-centre/926-20240202-core-open-redirect-in-installation-application.html vendor-advisory

Open in Interactive Console →

$ Console Community · 100/wk Open console ›