2 matches found
CVE-2018-15880
Joomla! before 3.8.12 is vulnerable to a stored XSS on the user profile page due to inadequate output filtering. Affected: Joomla! CMS versions prior to 3.8.12 (noting an additional ACL issue in 3.7.0–3.8.11). Impact, as stated, is stored XSS; no exploitation status is provided. Remediation: upgr...
CVE-2018-15880
An issue was discovered in Joomla! before 3.8.12. Inadequate output filtering on the user profile page could lead to a stored XSS attack...