- Project: Joomla!
- SubProject: CMS
- Severity: Medium
- Versions: 1.5.0 through 3.8.1
- Exploit type: Information Disclosure
- Reported Date: 2017-October-06
- Fixed Date: 2017-November-07
- CVE Number: CVE-2017-14596
Inadequate escaping in the LDAP authentication plugin can result in disclosure of username and password.
Joomla! CMS versions 1.5.0 through 3.8.1
Upgrade to version 3.8.2
The JSST at the Joomla! Security Centre.Joomla is available using 1 click install in Cloud Server cPanel and Cloud Server Webuzo. Contact us to find out our latest offers!