We use these services and cookies to improve your user experience. You may opt out if you wish, however, this may limit some features on this site.

Please see our statement on Data Privacy.

Crisp.chat (Helpdesk and Chat)

Ok

THREATINT
PUBLISHED

CVE-2022-23796

[20220304] - Core - Missing input validation within com_fields class inputs



AssignerJoomla
Reserved2022-01-20
Published2022-03-30
Updated2024-09-17

Description

An issue was discovered in Joomla! 3.7.0 through 3.10.6. Lack of input validation could allow an XSS attack using com_fields.

Product status

3.7.0-3.10.6
affected

References

https://developer.joomla.org/security-centre/873-20220304-core-missing-input-validation-within-com-fields-class-inputs.html vendor-advisory

cve.org CVE-2022-23796

nvd.nist.gov CVE-2022-23796

Download JSON

Share this page
https://cve.threatint.com/CVE/CVE-2022-23796
Subscribe to our newsletter to learn more about our work.