WEB APPLICATION VULNERABILITIES Standard & Premium

Joomla Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2022-23801)

Description

An issue was discovered in Joomla! 4.0.0 through 4.1.0. Possible XSS atack vector through SVG embedding in com_media.

Remediation

References

Related Vulnerabilities

Drupal Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2014-1607)

WordPress Plugin To Top Security Bypass (2.2.2)

Oracle Application Server Other Vulnerability (CVE-2002-0559)

Jboss EAP Uncontrolled Resource Consumption Vulnerability (CVE-2023-44487)

PHP Out-of-bounds Write Vulnerability (CVE-2015-0235)

Severity

Medium

Classification

CVE-2022-23801 CWE-707

Tags

Missing Update Known Vulnerabilities