2 matches found
CVE-2022-27910
CVE-2022-27910 affects Joomla DOCman (Joomlatools) 3.5.13 and likely earlier versions, with a reflected Cross-Site Scripting (XSS) in the image upload function. The vulnerability arises in the image upload handling, enabling injection of script via a crafted image path/parameter. Public details f...
CVE-2022-27910 Extension - Joomlatools - DOCman - Reflected Cross-Site Scripting (XSS) in an image upload function
In Joomla component 'Joomlatools - DOCman 3.5.13 and likely most versions below' are affected to an reflected Cross-Site Scripting XSS in an image upload function...