Description

An issue was discovered in Joomla! before 3.9.3. The "No Filtering" textfilter overrides child settings in the Global Configuration. This is intended behavior. However, it might be unexpected for the user because the configuration dialog lacks an additional message to explain this.

Remediation

References

CVE-2019-7739

Related Vulnerabilities

Atlassian Jira Incorrect Default Permissions Vulnerability (CVE-2019-14995)

WordPress Plugin WP ERP-Complete WordPress Business Manager with HR, CRM & Accounting Systems for Small Businesses Cross-Site Request Forgery (1.6.3)

WebLogic CVE-2021-1995 Vulnerability (CVE-2021-1995)

Moodle Permissions, Privileges, and Access Controls Vulnerability (CVE-2013-2242)

Envoy Proxy CVE-2023-27488 Vulnerability (CVE-2023-27488)

Severity

Medium

Classification

CVE-2019-7739 CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:A/VC:N/VI:N/VA:N/SC:L/SI:L/SA:N

Tags

Missing Update Known Vulnerabilities