2 matches found
CVE-2021-23124
An issue was discovered in Joomla! 3.9.0 through 3.9.23. The lack of escaping in modbreadcrumbs aria-label attribute allows XSS attacks...
PT-2021-15379 · Joomla · Joomla!
Name of the Vulnerable Software and Affected Versions: Joomla! versions 3.9.0 through 3.9.23 Description: The issue is related to a lack of escaping in the aria-label attribute of the mod breadcrumbs module, which allows XSS attacks. Recommendations: For Joomla! versions 3.9.0 through 3.9.23,...