An issue was discovered in Joomla! 3.0.0 through 3.9.23. The lack of ACL checks in the orderPosition endpoint of com_modules leak names of unpublished and/or inaccessible modules.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: Joomla
Published: 2021-01-12T20:19:49.325740Z
Updated: 2024-09-16T17:19:11.273Z
Reserved: 2021-01-06T00:00:00
Link: CVE-2021-23123
Vulnrichment
No data.
NVD
Status : Analyzed
Published: 2021-01-12T21:15:18.887
Modified: 2021-01-19T16:13:52.077
Link: CVE-2021-23123
Redhat
No data.