Acunetix DAST powers runtime capabilities for Invicti’s complete AppSec platform. Visit Invicti for more.

WEB APPLICATION VULNERABILITIES Standard & Premium

Joomla Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2024-21729)

Description

Inadequate input validation leads to XSS vulnerabilities in the accessiblemedia field.

Remediation

References

Related Vulnerabilities

OpenSSL Other Vulnerability (CVE-2003-0543)

LimeSurvey Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2015-5078)

WordPress Plugin Simplelife Cross-Site Request Forgery (1.2)

WordPress Plugin Forminator-Contact Form, Payment Form & Custom Form Builder Arbitrary File Upload (1.28.1)

WordPress Plugin WP Review Slider SQL Injection (12.1)

Severity

Medium

Classification

CVE-2024-21729 CWE-707 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

Tags

Missing Update Known Vulnerabilities