Joomla! 4.2.0 Full Path Disclosure due to missing _JEXEC check
CVE-2022-27911 Published on August 31, 2022

[20220801] - Core - Multiple Full Path Disclosures because of missing '_JEXEC or die check'
An issue was discovered in Joomla! 4.2.0. Multiple Full Path Disclosures because of missing '_JEXEC or die check' caused by the PSR12 changes.

Vendor Advisory NVD

Products Associated with CVE-2022-27911

Want to know whenever a new CVE is published for Joomla? stack.watch will email you.

Joomla

Affected Versions

Joomla! Project Joomla! CMS Version 4.2.0 is affected by CVE-2022-27911

Exploit Probability

EPSS

0.01%

Percentile

0.40%

EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.

Joomla! 4.2.0 Full Path Disclosure due to missing _JEXEC checkCVE-2022-27911 Published on August 31, 2022

Products Associated with CVE-2022-27911

Affected Versions

Exploit Probability

Joomla! 4.2.0 Full Path Disclosure due to missing _JEXEC check
CVE-2022-27911 Published on August 31, 2022