Project: Joomla! SubProject: CMS Impact: Moderate Severity: Low Versions:3.1.0 - 3.9.23 Exploit type: XSS Reported Date: 2020-09-01 Fixed Date: 2021-01-12 CVE Number: CVE-2021-23125 Description Lack of escaping of image-related parameters in multiple com_tags views cause lead to XSS attack vectors. Affected Installs Joomla! CMS versions 3.1.0 - 3.9.23 Solution Upgrade to version 3.9.24 Contact The JSST at the Joomla! Security Centre. Reported By: Šarūnas Paulauskas [20210103] - Core - XSS in com_tags image parameters
- Details
- Joomla RSS Feed
- Kategorie: Joomla News
Project: Joomla! SubProject: CMS Impact: Moderate Severity: Low Versions:3.1.0 - 3.9.23 Exploit type: XSS Reported Date: 2020-09-01 Fixed Date: 2021-01-12 CVE Number: CVE-2021-23125 Description Lack of escaping of image-related parameters in multiple com_tags views cause lead to XSS attack vectors. Affected Installs Joomla! CMS versions 3.1.0 - 3.9.23 Solution Upgrade to version 3.9.24 Contact The JSST at the Joomla! Security Centre. Reported By: Šarūnas Paulauskas - Zugriffe: 322