Description
An issue was discovered in Joomla! 4.0.0 through 4.1.0. Possible XSS atack vector through SVG embedding in com_media.
Remediation
References
Related Vulnerabilities
WordPress Plugin WP Symposium 'get_profile_avatar.php' SQL Injection (0.64)
WordPress Plugin Custom Dashboard & Login Page-AGCA Cross-Site Scripting (6.9.1)
Moodle Permissions, Privileges, and Access Controls Vulnerability (CVE-2012-3388)
Apache Tomcat Missing Release of Resource after Effective Lifetime Vulnerability (CVE-2021-42340)
MongoDb Improper Authentication Vulnerability (CVE-2014-8180)