Description
In Joomla! 3.x before 3.9.12, inadequate escaping allowed XSS attacks using the logo parameter of the default templates.
Remediation
References
Related Vulnerabilities
Internet Information Services Other Vulnerability (CVE-2001-0902)
WordPress Plugin WP Socializer-Simple & Easy Social Media Share Icons Cross-Site Scripting (2.4.2)
WordPress Plugin WP Easy Slideshow Multiple Cross-Site Request Forgery Vulnerabilities (1.0.3)
Moodle Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2014-0213)
MediaWiki Improper Restriction of XML External Entity Reference Vulnerability (CVE-2014-9487)