Lucene search
JoomlaCVELIST:CVE-2023-23754HistoryMay 30, 2023 - 4:12 p.m.
CVE-2023-23754 [20230501] - Core - Open Redirect and XSS within the mfa select
2023-05-3016:12:44
Joomla
www.cve.org
3
joomla
vulnerability
input validation
open redirect
xss
mfa
EPSS
0.001
Percentile
49.3%
An issue was discovered in Joomla! 4.2.0 through 4.3.1. Lack of input validation caused an open redirect and XSS issue within the new mfa selection screen.
CNA Affected
[
{
"defaultStatus": "unaffected",
"product": "Joomla! CMS",
"vendor": "Joomla! Project",
"versions": [
{
"status": "affected",
"version": "4.2.0-4.3.1"
}
]
}
]Related
osv
osv
CVE-2023-23754
2023-05-30 17:15:09
prion
prion
Input validation
2023-05-30 17:15:00
nvd
nvd
CVE-2023-23754
2023-05-30 17:15:09
joomla
joomla
[20230501] - Core - Open Redirects and XSS within the mfa selection
2023-02-28 00:00:00
cve
cve
CVE-2023-23754
2023-05-30 17:15:09
nessus
nessus
Joomla! 4.2.x < 4.3.2 Multiple Vulnerabilities
2023-06-01 00:00:00
openvas
openvas
Joomla! 4.2.0 - 4.3.1 Multiple Vulnerabilities
2023-05-31 00:00:00