CVE-2022-23793

Summary

An issue was discovered in Joomla! 3.0.0 through 3.10.6 & 4.0.0 through 4.1.0. Extracting an specifilcy crafted tar package could write files outside of the intended path.

Affected Software

VendorProductVersion RangeStatus
Joomla! ProjectJoomla! CMS3.0.0-3.10.6 & 4.0.0-4.1.0affected
Joomla! Projectjoomla/archive1.0.0-1.1.11 & 2.0.0affected

Weaknesses

  • Path Traversal

ADP Enrichment

CVE Program Container

Additional References

References