Description
In Joomla! before 3.9.19, incorrect input validation of the module tag option in com_modules allows XSS.
Remediation
References
Related Vulnerabilities
WordPress Plugin WP Fountain Cross-Site Scripting (1.5.9)
WordPress Plugin Pinterest by BestWebSoft Cross-Site Scripting (1.0.4)
phpMyFAQ Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2018-16650)
Moodle CVE-2020-25698 Vulnerability (CVE-2020-25698)
MyBB Permissions, Privileges, and Access Controls Vulnerability (CVE-2010-4624)