Description
An issue was discovered in Joomla! 4.0.0 through 4.1.0. Under specific circumstances, JInput pollutes method-specific input bags with $_REQUEST data.
Remediation
References
Related Vulnerabilities
Oracle JRE CVE-2013-5809 Vulnerability (CVE-2013-5809)
WordPress Plugin Booking Calendar Contact Form Cross-Site Scripting (1.0.24)
WordPress CVE-2006-4028 Vulnerability (CVE-2006-4028)
WordPress Plugin iThemes Security (formerly Better WP Security) Cross-Site Scripting (3.5.3)
WordPress Plugin SEO Redirection-301 Redirect Manager Cross-Site Request Forgery (8.9)