CVE-2019-12764 (joomla!)

An issue was discovered in Joomla! before 3.9.7. The update server URL of com_joomlaupdate can be manipulated by non Super-Admin users.
Source: NIST
CVE-2019-12764 (joomla!)