Assigner | Joomla |
Reserved | 2024-01-01 |
Published | 2024-02-20 |
Updated | 2024-07-21 |
Description
Inadequate input validation for media selection fields lead to XSS vulnerabilities in various extensions.
Problem types
CWE-79 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
Product status
1.6.0-3.10.14
4.0.0-4.4.2
5.0.0-5.0.2
Credits
Dominik Ziegelmüller
References
https://developer.joomla.org/security-centre/927-20240203-core-xss-in-media-selection-fields.html