CVE-2020-11889

An issue was discovered in Joomla! before 3.9.17. Incorrect ACL checks in the access level section of com_users allow the unauthorized deletion of usergroups.

We have discovered 274,406 live websites that are affected by CVE-2020-11889.

Test my site



Affected Software

Product  Joomla
Category Content Management System
Vulnerable Domains274,406 live websites (98.79% of Joomla install base)
Vulnerable Versions
  • from 0 before 3.9.17
Vulnerable Versions Count100 versions ( 59.52% of all versions)



Details

  • Published - Apr 21, 2020
  • Updated - Aug 4, 2024

CVE-2020-11889 usage by Country

United States16,382 websites


Italy66,648 websites
Australia24,831 websites
GB16,776 websites
Germany14,610 websites
Russia14,502 websites
Poland12,858 websites
Netherlands11,592 websites
Iran9,251 websites
South Africa8,927 websites

CVE-2020-11889 usage by TLD

.com66,849 websites
.it43,789 websites
.com.au17,073 websites
.ru12,402 websites
.pl9,217 websites
.co.uk9,030 websites
.org7,562 websites
.de7,079 websites
.nl6,915 websites
.net5,926 websites

Vulnerable Versions

Vulnerable versions are highlighted in red

Websites affected by CVE-2020-11889

Top websites that are affected by CVE-2020-11889. Please click on the "Contact us" link to get more information.
DomainCountryRankContacts
*****************.de Germany*,***
*******.**.ca Canada*,***
**************.********.com United States**,***
***********.com Italy**,***
***********.**.za South Africa**,***
********.com Serbia**,***
***************.com Italy**,***
********.com United States**,***
*********.com GB**,***
*****.**.uk GB**,***
See full domain list

FAQ

A total of 274,406 websites have been identified as vulnerable to CVE-2020-11889, discovered through global website indexing conducted by WebTechSurvey.
Joomla is susceptible to CVE-2020-11889 vulnerability.
Joomla versions before 3.9.17 are vulnerable to CVE-2020-11889.
Version 3.9.17 of Joomla addresses the CVE-2020-11889 security vulnerability.