CVE-2020-13760

In Joomla! before 3.9.19, missing token checks in com_postinstall lead to CSRF.

We have discovered 274,431 live websites that are affected by CVE-2020-13760.

Test my site



Affected Software

Product  Joomla
Category Content Management System
Vulnerable Domains274,431 live websites (98.80% of Joomla install base)
Vulnerable Versions
  • from 0 before 3.9.19
Vulnerable Versions Count101 versions ( 60.12% of all versions)



Details

  • Published - Jun 3, 2020
  • Updated - Aug 4, 2024

CVE-2020-13760 usage by Country

United States16,387 websites


Italy66,649 websites
Australia24,831 websites
GB16,776 websites
Germany14,614 websites
Russia14,503 websites
Poland12,858 websites
Netherlands11,592 websites
Iran9,251 websites
South Africa8,928 websites

CVE-2020-13760 usage by TLD

.com66,855 websites
.it43,790 websites
.com.au17,073 websites
.ru12,403 websites
.pl9,217 websites
.co.uk9,030 websites
.org7,562 websites
.de7,081 websites
.nl6,916 websites
.net5,926 websites

Vulnerable Versions

Vulnerable versions are highlighted in red

Websites affected by CVE-2020-13760

Top websites that are affected by CVE-2020-13760. Please click on the "Contact us" link to get more information.
DomainCountryRankContacts
*****************.de Germany*,***
*******.**.ca Canada*,***
**************.********.com United States**,***
***********.com Italy**,***
***********.**.za South Africa**,***
********.com Serbia**,***
***************.com Italy**,***
********.com United States**,***
*********.com GB**,***
*****.**.uk GB**,***
See full domain list

FAQ

A total of 274,431 websites have been identified as vulnerable to CVE-2020-13760, discovered through global website indexing conducted by WebTechSurvey.
Joomla is susceptible to CVE-2020-13760 vulnerability.
Joomla versions before 3.9.19 are vulnerable to CVE-2020-13760.
Version 3.9.19 of Joomla addresses the CVE-2020-13760 security vulnerability.