CVE-2016-8870

Vulnerability Description

The register method in the UsersModelRegistration class in controllers/user.php in the Users component in Joomla! before 3.6.4, when registration has been disabled, allows remote attackers to create user accounts by leveraging failure to check the Allow User Registration configuration setting.

CVSS Score

Affected Products

Related Weaknesses (CWE)

References

• http://www.rapid7.com/db/modules/auxiliary/admin/http/joomla_registration_privesThird Party Advisory
• http://www.securityfocus.com/bid/93876Third Party AdvisoryVDB Entry
• http://www.securitytracker.com/id/1037107
• http://www.securitytracker.com/id/1037108Third Party AdvisoryVDB Entry
• https://blog.sucuri.net/2016/10/details-on-the-privilege-escalation-vulnerabilit
• https://developer.joomla.org/security-centre/659-20161001-core-account-creation.Vendor Advisory
• https://github.com/joomla/joomla-cms/commit/bae1d43938c878480cfd73671e4945211538Patch
• https://medium.com/%40showthread/joomla-3-6-4-account-creation-elevated-privileg
• https://www.exploit-db.com/exploits/40637/ExploitThird Party Advisory
• http://www.rapid7.com/db/modules/auxiliary/admin/http/joomla_registration_privesThird Party Advisory
• http://www.securityfocus.com/bid/93876Third Party AdvisoryVDB Entry
• http://www.securitytracker.com/id/1037107
• http://www.securitytracker.com/id/1037108Third Party AdvisoryVDB Entry
• https://blog.sucuri.net/2016/10/details-on-the-privilege-escalation-vulnerabilit
• https://developer.joomla.org/security-centre/659-20161001-core-account-creation.Vendor Advisory