Description
An issue was discovered in Joomla! before 3.9.15. Inadequate escaping of usernames allows XSS attacks in com_actionlogs.
Remediation
References
Related Vulnerabilities
WordPress 4.7.x PHP Object Injection (4.7 - 4.7.20)
Oracle JRE CVE-2013-2443 Vulnerability (CVE-2013-2443)
WordPress Plugin ARPrice-Responsive Pricing Table Cross-Site Request Forgery (2.3)
Jboss EAP Exposure of Resource to Wrong Sphere Vulnerability (CVE-2021-3859)
MongoDb Improper Input Validation Vulnerability (CVE-2020-7925)