Vendor

Artio

1 brief RSS

Joomla com_booking Information Disclosure (CVE-2023-54357)

An unauthenticated information disclosure vulnerability (CVE-2023-54357) in the Joomla com_booking component version 2.4.9 allows attackers to enumerate user accounts, including names, usernames, and email addresses, by exploiting the getUserData function via specific GET requests.

Joomla! com_booking component 2.4.9 joomla web-vulnerability information-disclosure cve

1r 2t 1d ago