CNNVD-202509-4462 Information

CNNVD ID

CNNVD-202509-4462

Related CVE

CVE-2025-54477

• CNNVD Published: 2025-09-30

Description (Chinese)

Joomla! CMS是Joomla!开源的一个内容管理系统。 Joomla! CMS存在安全漏洞，该漏洞源于身份验证请求处理不当，可能导致用户枚举攻击。

Description (English)

CMS is an open-source content management system. The CMS has a security loophole, which stems from the mishandling of identification requests, which could lead to an attack by a user.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

Joomla!

Published

2025-09-30

Last Modified

2026-02-24

References

https://developer.joomla.org/security-centre/1011-20250902-core-user-enumeration-in-passkey-authentication-method.html https://vigilance.fr/vulnerability/Joomla-Core-information-disclosure-via-Passkey-User-Enumeration-48349

Patch

https://developer.joomla.org/security-centre/1011-20250902-core-user-enumeration-in-passkey-authentication-method.html