Joomla UsersModelRegistration Admin Registration Vulnerability Exploit

The register method in the UsersModelRegistration class in controllers/user.php in the Users component in Joomla! before 3.6.4 allows remote attackers to gain privileges by leveraging incorrect use of unfiltered data when registering on a site. This registration works even when registration has been disabled. This module exploits this vulnerability to add an administrator user to the Joomla database. Notice that this account could need registration confirmation (activation).
Exploit type: 
Platform: 
Vulnerabilty ID: 
CVE-2016-8869
Product Version: 
2017_R1
Released Date: 
Thursday, December 1, 2016 - 00:00