====================================================================

                             CERT-Renater

                 Note d'Information No. 2020/VULN049
_____________________________________________________________________

DATE                : 30/01/2020

HARDWARE PLATFORM(S): /

OPERATING SYSTEM(S): Systems running Joomla! versions 3 prior to 3.9.15.

=====================================================================
https://developer.joomla.org/security-centre/798-20200101-core-csrf-in-batch-actions.html
https://developer.joomla.org/security-centre/799-20200102-core-csrf-com-templates-less-compiler.html
https://developer.joomla.org/security-centre/800-20200103-core-xss-in-com-actionlogs.html
_____________________________________________________________________


[20200101] - Core - CSRF in batch actions

    Project: Joomla!
    SubProject: CMS
    Impact: Moderate
    Severity: Low
    Versions: 3.0.0-3.9.14
    Exploit type: CSRF
    Reported Date: 2019-December-23
    Fixed Date: 2020-January-28
    CVE Number: CVE-2020-8419

Description

Missing token checks in the batch actions of various components causes
CSRF vulnerabilities.


Affected Installs

Joomla! CMS versions 3.0.0 - 3.9.14


Solution

Upgrade to version 3.9.15


Contact

The JSST at the Joomla! Security Centre.
Reported By: Lee Thao from Viettel Cyber Security

_____________________________________________________________________


[20200102] - Core - CSRF com_templates LESS compiler

    Project: Joomla!
    SubProject: CMS
    Impact: High
    Severity: Low
    Versions: 3.0.0-3.9.14
    Exploit type: CSRF
    Reported Date: 2019-December-18
    Fixed Date: 2020-January-28
    CVE Number: CVE-2020-8420


Description

A missing CSRF token check in the LESS compiler of com_templates causes
a CSRF vulnerability.


Affected Installs

Joomla! CMS versions 3.0.0 - 3.9.14


Solution

Upgrade to version 3.9.15


Contact

The JSST at the Joomla! Security Centre.

_____________________________________________________________________


[20200103] - Core - XSS in com_actionlogs

    Project: Joomla!
    SubProject: CMS
    Impact: High
    Severity: Low
    Versions: 3.9.0-3.9.14
    Exploit type: XSS
    Reported Date: 2019-December-25
    Fixed Date: 2020-January-28
    CVE Number: CVE-2020-8421

Description

Inadequate escaping of usernames allow XSS attacks in com_actionlogs.


Affected Installs

Joomla! CMS versions 3.9.0 - 3.9.14


Solution

Upgrade to version 3.9.15


Contact

The JSST at the Joomla! Security Centre.
Reported By: Mayank Kumbhar from Techjoomla


=========================================================
+ CERT-RENATER        | tel : 01-53-94-20-44            +
+ 23/25 Rue Daviel    | fax : 01-53-94-20-41            +
+ 75013 Paris         | email:cert@support.renater.fr   +
=========================================================