Description
Multiple cross-site scripting (XSS) vulnerabilities in Joomla! 1.5.7 and earlier allow remote authenticated users with certain privileges to inject arbitrary web script or HTML via (1) the title and description parameters to the com_weblinks module and (2) unspecified vectors in the com_content module related to "article submission."
Remediation
References
Related Vulnerabilities
WordPress Plugin Elementor Website Builder Multiple Cross-Site Scripting Vulnerabilities (3.1.1)
IBM RTC Improper Restriction of Rendered UI Layers or Frames Vulnerability (CVE-2020-4547)
WebLogic Improper Check for Unusual or Exceptional Conditions Vulnerability (CVE-2019-17195)
WordPress Plugin User Access Manager Cross-Site Scripting (1.2.14)