CVE-2016-8870

HIGH EXPLOITED LAB

Joomla! <3.6.4 - RCE

Title source: llm

Description

The register method in the UsersModelRegistration class in controllers/user.php in the Users component in Joomla! before 3.6.4, when registration has been disabled, allows remote attackers to create user accounts by leveraging failure to check the Allow User Registration configuration setting.

Exploits (4)

exploitdb WORKING POC
by Xiphos Research Ltd · textwebappsphp
https://www.exploit-db.com/exploits/40637
nomisec WORKING POC
by cved-sources · poc
https://github.com/cved-sources/cve-2016-8870
metasploit WORKING POC
rubypoc
https://github.com/rapid7/metasploit-framework/blob/master/modules/auxiliary/admin/http/joomla_registration_privesc.rb

References (9)

Scores

CVSS v3 8.1
EPSS 0.9151
EPSS Percentile 99.7%
Attack Vector NETWORK
CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

Lab Environment

COMMUNITY
Community Lab
docker pull medicean/vulapps:base_joomla_3.5

Details

VulnCheck KEV 2016-10-28
CWE
CWE-20
Status published
Products (1)
joomla/joomla\! < 3.6.3
Published Nov 04, 2016
Tracked Since Feb 18, 2026