4 matches found
Joomla! 2.5.x < 3.9.21 Multiple Vulnerabilities
According to its self-reported version, the instance of Joomla! running on the remote web server is 2.5.x prior to 3.9.21. It is, therefore, affected by multiple vulnerabilities. - Lack of escaping in modlatestactions allows Cross-Site Scripting XSS attacks. CVE-2020-24599 - Lack of input...
Joomla 2.5.x < 3.9.21 Multiple Vulnerabilities (5821-joomla-3-9-21)
According to its self-reported version, the instance of Joomla! running on the remote web server is 2.5.x prior to 3.9.21. It is, therefore, affected by multiple vulnerabilities. - Lack of escaping in modlatestactions allows XSS attacks. CVE-2020-24599 - Lack of input validation in comcontent lea...
CVE-2020-24599
CVE-2020-24599 affects Joomla! versions before 3.9.21 through a lack of escaping in mod_latestactions, enabling Cross-Site Scripting (XSS). The issue is documented across multiple feeds (NVD, OSV, CNVD, etc.) with a common description: an input/escape failure in mod_latestactions leads to XSS. CV...
CVE-2020-24599
An issue was discovered in Joomla! before 3.9.21. Lack of escaping in modlatestactions allows XSS attacks...