← volver
CVE-2020-35611

[20201102] - Core - Disclosure of secrets in Global Configuration page

EPSS 1.3%
An issue was discovered in Joomla! 2.5.0 through 3.9.22. The globlal configuration page does not remove secrets from the HTML output, disclosing the current values.
Productos afectados
Joomla! Project · Joomla! CMS

¿Quieres saber si tu infraestructura está expuesta a esto?

Hablar con TrueHacking →
Referencias
https://developer.joomla.org/security-centre/829-20201102-core-disclosure-of-secrets-in-global-configuration-page.html