CVE-2018-17855
- Source
- https://cve.org/CVERecord?id=CVE-2018-17855
- Import Source
- https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2018-17855.json
- JSON Data
- https://api.osv.dev/v1/vulns/CVE-2018-17855
- Published
- 2018-10-09T21:29:00.543Z
- Modified
- 2026-03-15T14:30:13.905403Z
- Severity
-
- 8.8 (High) CVSS_V3 - CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H CVSS Calculator
- Summary
- [none]
- Details
-
An issue was discovered in Joomla! before 3.8.13. If an attacker gets access to the mail account of an user who can approve admin verifications in the registration process, he can activate himself.
- References
Affected packages
Git / github.com/joomla/joomla-cms
Affected versions
1.*
1.7.3
2.*
2.5.0
2.5.0_RC1
2.5.0_beta1
2.5.0_beta2
2.5.1
2.5.2
2.5.3
2.5.4
2.5.5
2.5.6
Other
3
issues-241-257
3.*
3.0.0
3.0.0_alpha-1
3.0.0_alpha-2
3.0.0_beta1
3.0.1
3.0.3
3.1.0_beta1
3.1.0_beta2
3.1.0_beta3
3.1.0_beta4
3.1.0_beta5
3.1.1
3.1.5
3.2.0
3.2.0.alpha
3.2.0.beta
3.2.0.rc
3.2.1
3.2.2
3.2.3
3.2.4
3.3.0
3.3.0.beta
3.3.0.beta2
3.3.0.rc
3.3.1
3.3.2
3.3.3
3.3.4
3.3.5
3.3.6
3.4.0
3.4.0-beta1
3.4.0-beta2
3.4.0-beta3
3.4.0-rc
3.4.1
3.4.1-rc
3.4.1-rc2
3.4.2
3.4.2-rc
3.4.3
3.4.4
3.4.4-rc
3.4.4-rc2
3.4.5
3.4.6
3.4.7
3.4.8
3.4.8-rc
3.5.0
3.5.0-beta
3.5.0-beta2
3.5.0-beta3
3.5.0-beta4
3.5.0-beta5
3.5.0-rc
3.5.0-rc2
3.5.0-rc3
3.5.0-rc4
3.5.1
3.5.1-rc
3.5.1-rc2
3.6.0
3.6.0-alpha
3.6.0-beta1
3.6.0-beta2
3.6.0-rc
3.6.0-rc2
3.6.1
3.6.1-rc1
3.6.1-rc2
3.6.2
3.6.3
3.6.3-rc1
3.6.3-rc2
3.6.3-rc3
3.6.4
3.6.5
3.7.0
3.7.0-alpha1
3.7.0-beta1
3.7.0-beta2
3.7.0-beta3
3.7.0-beta4
3.7.0-rc1
3.7.0-rc2
3.7.0-rc3
3.7.0-rc4
3.7.1
3.7.1-rc1
3.7.1-rc2
3.7.2
3.7.3
3.7.3-beta1
3.7.3-rc1
3.7.3-rc2
3.7.4
3.7.4-beta1
3.7.4-rc1
3.8.0
3.8.0-beta1
3.8.0-beta2
3.8.0-beta3
3.8.0-beta4
3.8.0-rc1
3.8.1
3.8.1-rc
3.8.10
3.8.11
3.8.11-rc
3.8.12
3.8.12-rc
3.8.2
3.8.2-rc
3.8.3
3.8.3-rc
3.8.4
3.8.4-rc
3.8.4-rc2
3.8.5
3.8.5-rc
3.8.6
3.8.6-rc1
3.8.7
3.8.7-rc
3.8.8
3.8.8-rc
3.8.9
3.8.9-rc