CVE-2019-12764

An issue was discovered in Joomla! before 3.9.7. The update server URL of com_joomlaupdate can be manipulated by non Super-Admin users.

Date published : 2019-06-11

http://www.securityfocus.com/bid/108729

https://developer.joomla.org/security-centre/785-20190603-core-acl-hardening-of-com-joomlaupdate