2025-03-11 16:07:28
Joomla
PUBLISHED
Inadequate checks in the Media Manager allowed users with "edit" privileges to change file extension to arbitrary extension, including .php and other potentially executable extensions.