Description An issue was discovered in Joomla! 4.0.0 through 4.1.0. Possible XSS atack vector through SVG embedding in com_media. Remediation References CVE-2022-23801 Related Vulnerabilities Jenkins Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2019-1003050) ProjectSend Insertion of Sensitive Information into Log File Vulnerability (CVE-2019-11492) Atlassian Jira Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2021-26080) Opencart Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2018-11495) MySQL CVE-2022-21640 Vulnerability (CVE-2022-21640) Severity Medium Classification CVE-2022-23801 CWE-707 Tags Missing Update Known Vulnerabilities