← Back

CVE-2016-9081

nvd nist
Published: Jan 23, 2017Modified: May 13, 2026

JSON object

Loading...
9.8
Vector
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Exploitability: 3.9 / Impact: 5.9
Source: NVD

Description

Joomla! 3.4.4 through 3.6.3 allows attackers to reset username, password, and user group assignments and possibly perform other user account modifications via unspecified vectors.

Affected (33)

Products: Joomla: Joomla!
Joomla
1 product
Joomla!
Configuration A
33 vulnerable
Vulnerable SoftwareAffected Versions
Joomla
Joomla!
Version 3.4.4
Joomla!
Version 3.4.5
Joomla!
Version 3.4.6
Joomla!
Version 3.4.7
Joomla!
Version 3.4.8
Joomla!
Version 3.4.8 rc
Joomla!
Version 3.5.0
Joomla!
Version 3.5.0 beta2
Joomla!
Version 3.5.0 beta3
Joomla!
Version 3.5.0 beta4
Joomla!
Version 3.5.0 beta5
Joomla!
Version 3.5.0 beta
Joomla!
Version 3.5.0 rc2
Joomla!
Version 3.5.0 rc3
Joomla!
Version 3.5.0 rc4
Joomla!
Version 3.5.0 rc
Joomla!
Version 3.5.1
Joomla!
Version 3.5.1 rc2
Joomla!
Version 3.5.1 rc
Joomla!
Version 3.6.0
Joomla!
Version 3.6.0 alpha
Joomla!
Version 3.6.0 beta1
Joomla!
Version 3.6.0 beta2
Joomla!
Version 3.6.0 rc2
Joomla!
Version 3.6.0 rc
Joomla!
Version 3.6.1
Joomla!
Version 3.6.1 rc1
Joomla!
Version 3.6.1 rc2
Joomla!
Version 3.6.2
Joomla!
Version 3.6.3
Joomla!
Version 3.6.3 rc1
Joomla!
Version 3.6.3 rc2
Joomla!
Version 3.6.3 rc3

Related CWEs

CWE-255
CWE-255

References (4)

Source: cve@mitre.org
Third Party AdvisoryVDB Entry
Source: cve@mitre.org
PatchVendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Third Party AdvisoryVDB Entry
Source: af854a3a-2127-422b-91ae-364da2661108
PatchVendor Advisory

Timeline

No history available yet.