CVE-2015-8563
Joomla! 3.2.0-3.4.5 - Cross-Site Request Forgery in com_templates
Title source: llmDescription
Cross-site request forgery (CSRF) vulnerability in the com_templates component in Joomla! 3.2.0 through 3.3.x and 3.4.x before 3.4.6 allows remote attackers to hijack the authentication of unspecified victims via unknown vectors.
References (2)
Core 2
Core References
Third Party Advisory, VDB Entry vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/79199
Vendor Advisory x_refsource_confirm
https://developer.joomla.org/security-centre/633-20151214-core-csrf-hardening.html
Scores
EPSS
0.0001
EPSS Percentile
0.3%
Details
CWE
CWE-352
Status
published
Products (16)
joomla/joomla\!
3.2.0
joomla/joomla\!
3.2.1
joomla/joomla\!
3.2.2
joomla/joomla\!
3.2.3
joomla/joomla\!
3.2.4
joomla/joomla\!
3.3.0
joomla/joomla\!
3.3.1
joomla/joomla\!
3.3.2
joomla/joomla\!
3.3.3
joomla/joomla\!
3.3.4
... and 6 more
Published
Dec 16, 2015
Tracked Since
Feb 18, 2026