Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
7.5
CVSSv2

CVE-2016-8869

Published: 04/11/2016 Updated: 07/11/2023
CVSS v2 Base Score: 7.5 | Impact Score: 6.4 | Exploitability Score: 10
CVSS v3 Base Score: 9.8 | Impact Score: 5.9 | Exploitability Score: 3.9
VMScore: 756
Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P
Subscribe to Joomla\!

Vulnerability Summary

The register method in the UsersModelRegistration class in controllers/user.php in the Users component in Joomla! prior to 3.6.4 allows remote malicious users to gain privileges by leveraging incorrect use of unfiltered data when registering on a site.

Vulnerability Trend

Vulnerable Product Search on Vulmon Subscribe to Product

joomla joomla\\!

Exploits

Exploit DB: Joomla! 3.4.4 < 3.6.4 - Account Creation / Privilege Escalation
Source: githubcom/XiphosResearch/exploits/tree/master/Joomraa While analysing the recent Joomla exploit in com_users:userregister we came across a problem with the upload whitelisting They don't allow files containing &lt;?php, or with the extensions php and phtml, but they do allow &lt;?= and pht files, which works out of the box on ...

Github Repositories

https://github.com/tu3n4nh/OWASP-Testing-Guide-v4-Table-of-Contents

OWASP Giới thiệu OWASP là một tổ chức phi lợi nhuận cung cấp một framework đầy đủ về what, why, when, where và how cho việc đánh giá, kiểm tra các ứng dụng web Web Application Security Testing 41 Testing Checklist 42 OTG-INFO (Information Gathering) 421 OTG-INFO-001 (Conduct Search Engine Discovery

https://github.com/dhniroshan/offensive_hacking

Sudo Vulnerability (CVE-2019-14287) this is demostration on CVE-2019-14287 vulnerability Here is everything you need to know about the Sudo vulnerability, how it works, and how to handle the vulnerable Sudo component, if you find that you are currently at risk Joomla Account Creation and Privilege Escalation CVE:2016-8869 / 2016-8870 CVE Reference : CVE-2016-8869, CVE-2016-8

https://github.com/cved-sources/cve-2016-8869

cve-2016-8869

CVE-2016-8869 This is part of Cved: a tool to manage vulnerable docker containers Cved: githubcom/git-rep-src/cved Image source: githubcom/cved-sources/cve-2016-8869 Image author: githubcom/Medicean/VulApps/tree/master/j/joomla/1

https://github.com/binfed/cms-exp

部分cms的exp

CMS-Hunter 简介 Content Management System Vulnerability Hunter 说明:目前来看,本项目会进行长期维护,有修改的建议或者想法欢迎联系作者。 CMS 漏洞列表 ThinkPHP ThinkPHP_323-5010_缓存函数设计缺陷 Discuz Discuz_<34_birthprovince_前台任意文件删除 DedeCMS DedeCMS_v57_shops_delivery_存储型XSS DedeCMS_v57_car

https://github.com/copperfieldd/CMS-Hunter

CMS-Hunter 简介 Content Management System Vulnerability Hunter 说明:目前来看,本项目会进行长期维护,有修改的建议或者想法欢迎联系作者。 CMS 漏洞列表 Discuz Discuz_<34_birthprovince_前台任意文件删除 DedeCMS DedeCMS_v57_shops_delivery_存储型XSS DedeCMS_v57_carbuyaction_存储型XSS DedeCMS_v57_友情链接CSRF_GetSh

Recent Articles

Hackers hustle to hassle un-patched Joomla! sites
The Register • Darren Pauli • 02 Nov 2016

If you didn't patch, you've probably been p0wned already

Attackers are already exploiting a dangerous privileged account creation hole in the Joomla! content management system attempting, with attempts made on about 30,000 sites in the days days after a patch for the flaw landed. The vulnerability, which allows anyone to create privileged accounts on Joomla! sites, was first flagged in a scant Joomla! pre-release notice warning administrators to prepare for a then un-described but critical patch. At the time The Register warned the then mysterious fla...

Read more...
Joomla! squashes critical privileged account creation holes
The Register • Darren Pauli • 27 Oct 2016

Borked two factor authentication also fixed

Joomla! has revealed it's patched twin critical flaws allowing attackers to bypass rules and create elevated privilege accounts. Project staff warned of the looming patch this week asking administrators to prepare for the patch and apply it immediately. The Joomla! security strike team said at the time only that a hole impacted the content management system core and was a "very important" fix. Joomla! has been downloaded more than 75 million times and runs on big ticket sites including McDonalds...

Read more...

References

CWE-20http://www.rapid7.com/db/modules/auxiliary/admin/http/joomla_registration_priveschttps://www.exploit-db.com/exploits/40637/https://github.com/joomla/joomla-cms/commit/bae1d43938c878480cfd73671e4945211538fdcfhttps://developer.joomla.org/security-centre/660-20161002-core-elevated-privileges.htmlhttps://blog.sucuri.net/2016/10/details-on-the-privilege-escalation-vulnerability-in-joomla.htmlhttp://www.securitytracker.com/id/1037108http://www.securityfocus.com/bid/93883https://medium.com/%40showthread/joomla-3-6-4-account-creation-elevated-privileges-write-up-and-exploit-965d8fb46fa2#.rq4qh1v4rhttps://nvd.nist.govhttps://www.exploit-db.com/exploits/40637/https://github.com/cved-sources/cve-2016-8869
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-3400CVE-2023-7252CVE-2024-21111denial of serviceCVE-2024-29661CVE-2024-22856remote attackersencryptionCVE-2023-38299
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook