Arbitrary File Write Vulnerability in Joomla! 3.0.0 through 3.9.24

Arbitrary File Write Vulnerability in Joomla! 3.0.0 through 3.9.24

CVE-2021-26028 · MEDIUM Severity

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N

An issue was discovered in Joomla! 3.0.0 through 3.9.24. Extracting an specifilcy crafted zip package could write files outside of the intended path.

Learn more about our Web Application Penetration Testing UK.