The pagination class includes arbitrary parameters in links, leading to cache poisoning attack vectors.
2024-08-20T16:15:10.840
2025-06-04T20:58:53.193
Analyzed
CVSSv3.1: 9.1 (CRITICAL)
| Type | Vendor | Product | Version/Range | Vulnerable? |
|---|---|---|---|---|
| Application | joomla | joomla\! | < 3.10.17 | Yes |
| Application | joomla | joomla\! | < 4.4.7 | Yes |
| Application | joomla | joomla\! | < 5.1.3 | Yes |