CVE-2020-8420

An issue was discovered in Joomla! before 3.9.15. A missing CSRF token check in the LESS compiler of com_templates causes a CSRF vulnerability.

We have discovered 274,362 live websites that are affected by CVE-2020-8420.

Test my site



Affected Software

Product  Joomla
Category Content Management System
Vulnerable Domains274,362 live websites (98.78% of Joomla install base)
Vulnerable Versions
  • from 0 before 3.9.15
Vulnerable Versions Count98 versions ( 58.33% of all versions)



Details

  • Published - Jan 29, 2020
  • Updated - Aug 4, 2024

CVE-2020-8420 usage by Country

United States16,374 websites


Italy66,646 websites
Australia24,831 websites
GB16,763 websites
Germany14,603 websites
Russia14,498 websites
Poland12,856 websites
Netherlands11,592 websites
Iran9,251 websites
South Africa8,927 websites

CVE-2020-8420 usage by TLD

.com66,840 websites
.it43,787 websites
.com.au17,073 websites
.ru12,385 websites
.pl9,215 websites
.co.uk9,030 websites
.org7,560 websites
.de7,074 websites
.nl6,915 websites
.net5,925 websites

Vulnerable Versions

Vulnerable versions are highlighted in red

Websites affected by CVE-2020-8420

Top websites that are affected by CVE-2020-8420. Please click on the "Contact us" link to get more information.
DomainCountryRankContacts
*****************.de Germany*,***
*******.**.ca Canada*,***
**************.********.com United States**,***
***********.com Italy**,***
***********.**.za South Africa**,***
********.com Serbia**,***
***************.com Italy**,***
********.com United States**,***
*********.com GB**,***
*****.**.uk GB**,***
See full domain list

FAQ

A total of 274,362 websites have been identified as vulnerable to CVE-2020-8420, discovered through global website indexing conducted by WebTechSurvey.
Joomla is susceptible to CVE-2020-8420 vulnerability.
Joomla versions before 3.9.15 are vulnerable to CVE-2020-8420.
Version 3.9.15 of Joomla addresses the CVE-2020-8420 security vulnerability.