Lucene search
JoomlaCVE-2024-21722HistoryFeb 29, 2024 - 1:44 a.m.
CVE-2024-21722
2024-02-2901:44:03
CWE-613
Joomla
web.nvd.nist.gov
5386
cve-2024-21722
mfa
user session
security vulnerability
nvd
The MFA management features did not properly terminate existing user sessions when a user’s MFA methods have been modified.
CNA Affected
[
{
"defaultStatus": "unaffected",
"product": "Joomla! CMS",
"vendor": "Joomla! Project",
"versions": [
{
"status": "affected",
"version": "3.2.0-3.10.14"
},
{
"status": "affected",
"version": "4.0.0-4.4.2"
},
{
"status": "affected",
"version": "5.0.0-5.0.2"
}
]
}
]Related
joomla
joomla
[20240201] - Core - Insufficient session expiration in MFA management views
2023-11-29 00:00:00
nvd
nvd
CVE-2024-21722
2024-02-29 01:44:03
prion
prion
Information disclosure
2024-02-29 01:44:00
openvas
openvas
Joomla! Session Expiration Vulnerability (20240201)
2024-02-23 00:00:00
cvelist
cvelist
vulnrichment
vulnrichment
nessus
nessus
Joomla 1.5.x < 3.10.15 / 4.0.x < 4.4.3 / 5.0.x < 5.0.3 Multiple Vulnerabilities (5904-joomla-5-0-3-and-4-4-3-security-and-bug-fix-release)
2024-02-20 00:00:00
Joomla! 1.5.x < 4.4.3 Multiple Vulnerabilities
2024-02-21 00:00:00
Joomla! 5.x < 5.0.3 Multiple Vulnerabilities
2024-02-21 00:00:00
malwarebytes
malwarebytes
Joomla! patches XSS flaws that could lead to remote code execution
2024-02-23 16:11:33