An issue exists in Joomla! Core prior to 3.8.8. The web install application would autofill password fields after either a form validation error or navigating to a previous install step, and display the plaintext password for the administrator account at the confirmation screen.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
joomla joomla\\! |