Inadequate InputFilter Checks Allow Upload of Malicious Phar Files in Joomla!

Inadequate InputFilter Checks Allow Upload of Malicious Phar Files in Joomla!

CVE-2018-15882 · HIGH Severity

AV:N/AC:L/AU:N/C:P/I:P/A:P

An issue was discovered in Joomla! before 3.8.12. Inadequate checks in the InputFilter class could allow specifically prepared phar files to pass the upload filter.

Learn more about our Web Application Penetration Testing UK.