CVE-2021-26035
CVE-2021-26035 affects Joomla! 3.0.0–3.9.27, due to inadequate escaping in the JForm API rules field, enabling Cross‑Site Scripting (XSS). The issue is documented with CVSS v3.1 base score 6.1 (MEDIUM) and CVSS v2 base score 4.3 (MEDIUM). Nessus and other sources corroborate the XSS vulnerability...