Description
Cross-site scripting (XSS) vulnerability in the highlighter plugin in Joomla! 2.5.x before 2.5.10 and 3.0.x before 3.0.4 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
Remediation
References
Related Vulnerabilities
ProjectSend Authorization Bypass Through User-Controlled Key Vulnerability (CVE-2017-20101)
WordPress Plugin WP Easy Gallery 'select_gallery' Parameter Cross-Site Scripting (1.7)
WordPress Plugin Appointment Booking Calendar SQL Injection (1.1.23)
Moodle Other Vulnerability (CVE-2019-10189)
WordPress Plugin Easy Twitter Feed Cross-Site Scripting (1.1)