← back
CVE-2022-27909

Extension - Incorrect Access Control within jdownloads extension

EPSS 0.8%
In Joomla component 'jDownloads 3.9.8.2 Stable' the remote user can change some parameters in the address bar and see the names of other users' files
Affected products
jDownloads · jDownloads

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://hackerhood.redhotcyber.com/cve-2022-27909-jdownloads/https://www.jdownloads.com/index.php/downloads/download/57-jdownloads-3-9.html