Developer Network™ - Project: Joomla!
- SubProject: CMS
- Severity: High
- Versions: 1.7.3 - 3.7.2
- Exploit type: Information Disclosure
- Reported Date: 2016-Feb-05
- Fixed Date: 2017-July-04
- CVE Number: CVE-2017-9933
Description
Improper cache invalidation leads to disclosure of form contents.
Affected Installs
Joomla! CMS versions 1.7.3-3.7.2
Solution
Upgrade to version 3.7.3
Contact
The JSST at the Joomla! Security Centre.
Reported By: Jeff Channell