CVE-2024-27187
Description
Improper Access Controls allows backend users to overwrite their username when disallowed.
CWE
- CWE-284 — CWE-284 Improper Access Control
Affected
- Joomla! Project / Joomla! CMS — v=4.0.0-4.4.6 [affected]; v=5.0.0-5.1.2 [affected]
CVSS
- (none)
References
- https://developer.joomla.org/security-centre/945-20240804-core-improper-acl-for-backend-profile-view.html vendor-advisory
Source
cvelistV5-main/cves/2024/27xxx/CVE-2024-27187.json