mirror of
https://github.com/CVEProject/cvelist.git
synced 2025-07-29 05:56:59 +00:00
102 lines
3.9 KiB
JSON
102 lines
3.9 KiB
JSON
{
|
|
"CVE_data_meta": {
|
|
"ASSIGNER": "cve@mitre.org",
|
|
"ID": "CVE-2016-8870",
|
|
"STATE": "PUBLIC"
|
|
},
|
|
"affects": {
|
|
"vendor": {
|
|
"vendor_data": [
|
|
{
|
|
"product": {
|
|
"product_data": [
|
|
{
|
|
"product_name": "n/a",
|
|
"version": {
|
|
"version_data": [
|
|
{
|
|
"version_value": "n/a"
|
|
}
|
|
]
|
|
}
|
|
}
|
|
]
|
|
},
|
|
"vendor_name": "n/a"
|
|
}
|
|
]
|
|
}
|
|
},
|
|
"data_format": "MITRE",
|
|
"data_type": "CVE",
|
|
"data_version": "4.0",
|
|
"description": {
|
|
"description_data": [
|
|
{
|
|
"lang": "eng",
|
|
"value": "The register method in the UsersModelRegistration class in controllers/user.php in the Users component in Joomla! before 3.6.4, when registration has been disabled, allows remote attackers to create user accounts by leveraging failure to check the Allow User Registration configuration setting."
|
|
}
|
|
]
|
|
},
|
|
"problemtype": {
|
|
"problemtype_data": [
|
|
{
|
|
"description": [
|
|
{
|
|
"lang": "eng",
|
|
"value": "n/a"
|
|
}
|
|
]
|
|
}
|
|
]
|
|
},
|
|
"references": {
|
|
"reference_data": [
|
|
{
|
|
"name": "93876",
|
|
"refsource": "BID",
|
|
"url": "http://www.securityfocus.com/bid/93876"
|
|
},
|
|
{
|
|
"name": "https://blog.sucuri.net/2016/10/details-on-the-privilege-escalation-vulnerability-in-joomla.html",
|
|
"refsource": "MISC",
|
|
"url": "https://blog.sucuri.net/2016/10/details-on-the-privilege-escalation-vulnerability-in-joomla.html"
|
|
},
|
|
{
|
|
"name": "https://developer.joomla.org/security-centre/659-20161001-core-account-creation.html",
|
|
"refsource": "CONFIRM",
|
|
"url": "https://developer.joomla.org/security-centre/659-20161001-core-account-creation.html"
|
|
},
|
|
{
|
|
"name": "http://www.rapid7.com/db/modules/auxiliary/admin/http/joomla_registration_privesc",
|
|
"refsource": "MISC",
|
|
"url": "http://www.rapid7.com/db/modules/auxiliary/admin/http/joomla_registration_privesc"
|
|
},
|
|
{
|
|
"name": "40637",
|
|
"refsource": "EXPLOIT-DB",
|
|
"url": "https://www.exploit-db.com/exploits/40637/"
|
|
},
|
|
{
|
|
"name": "1037108",
|
|
"refsource": "SECTRACK",
|
|
"url": "http://www.securitytracker.com/id/1037108"
|
|
},
|
|
{
|
|
"name": "1037107",
|
|
"refsource": "SECTRACK",
|
|
"url": "http://www.securitytracker.com/id/1037107"
|
|
},
|
|
{
|
|
"name": "https://github.com/joomla/joomla-cms/commit/bae1d43938c878480cfd73671e4945211538fdcf",
|
|
"refsource": "CONFIRM",
|
|
"url": "https://github.com/joomla/joomla-cms/commit/bae1d43938c878480cfd73671e4945211538fdcf"
|
|
},
|
|
{
|
|
"name": "https://medium.com/@showthread/joomla-3-6-4-account-creation-elevated-privileges-write-up-and-exploit-965d8fb46fa2#.rq4qh1v4r",
|
|
"refsource": "MISC",
|
|
"url": "https://medium.com/@showthread/joomla-3-6-4-account-creation-elevated-privileges-write-up-and-exploit-965d8fb46fa2#.rq4qh1v4r"
|
|
}
|
|
]
|
|
}
|
|
} |