The register method in the UsersModelRegistration class in controllers/user.php in the Users component in Joomla! before 3.6.4, when registration has been disabled, allows remote attackers to create user accounts by leveraging failure to check the Allow User Registration configuration setting.
References
Link | Resource |
---|---|
http://www.rapid7.com/db/modules/auxiliary/admin/http/joomla_registration_privesc | Third Party Advisory |
https://www.exploit-db.com/exploits/40637/ | Exploit Third Party Advisory |
https://developer.joomla.org/security-centre/659-20161001-core-account-creation.html | Vendor Advisory |
https://github.com/joomla/joomla-cms/commit/bae1d43938c878480cfd73671e4945211538fdcf | Patch |
https://blog.sucuri.net/2016/10/details-on-the-privilege-escalation-vulnerability-in-joomla.html | |
https://medium.com/@showthread/joomla-3-6-4-account-creation-elevated-privileges-write-up-and-exploit-965d8fb46fa2#.rq4qh1v4r | Technical Description Third Party Advisory |
http://www.securityfocus.com/bid/93876 | Third Party Advisory VDB Entry |
http://www.securitytracker.com/id/1037108 | Third Party Advisory VDB Entry |
http://www.securitytracker.com/id/1037107 |
Configurations
Information
Published : 2016-11-04 14:59
Updated : 2017-07-28 18:34
NVD link : CVE-2016-8870
Mitre link : CVE-2016-8870
JSON object : View
CWE
CWE-20
Improper Input Validation
Products Affected
joomla
- joomla\!