Joomla Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2021-26030)

Description

An issue was discovered in Joomla! 3.0.0 through 3.9.25. Inadequate escaping allowed XSS attacks using the logo parameter of the default templates on error page

Remediation

References

CVE-2021-26030

Related Vulnerabilities

phpBB Permissions, Privileges, and Access Controls Vulnerability (CVE-2008-6506)

PHP-Fusion Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2013-7375)

OpenSSL Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2016-0703)

WordPress Plugin Gallery Objects SQL Injection (0.4)

Moodle Uncontrolled Resource Consumption Vulnerability (CVE-2021-32476)

Severity

Medium

Classification

CVE-2021-26030 CWE-707

Description

Remediation

References

Related Vulnerabilities

Severity

Classification

Tags

Take action and discover your vulnerabilities