CVE-2018-12711
CVE-2018-12711 affects Joomla! language switcher module (versions 1.6.0–3.8.8). The issue is a reflective XSS caused by unescaped HTML characters in the current language link, which can be exploited to inject arbitrary parameters/values on the current page URL. The vulnerability is tied to the la...