Autofill Password Disclosure Vulnerability in Joomla! Core

Autofill Password Disclosure Vulnerability in Joomla! Core

CVE-2018-11325 · MEDIUM Severity

AV:N/AC:L/AU:N/C:P/I:N/A:N

An issue was discovered in Joomla! Core before 3.8.8. The web install application would autofill password fields after either a form validation error or navigating to a previous install step, and display the plaintext password for the administrator account at the confirmation screen.

Learn more about our Web App Pen Testing.