5 matches found
CVE-2024-21724
Inadequate input validation for media selection fields lead to XSS vulnerabilities in various extensions...
Joomla! 1.5.x < 4.4.3 Multiple Vulnerabilities
According to its self-reported version, the instance of Joomla! running on the remote web server is 1.5.x prior to 4.4.3 or 5.x prior to 5.0.3. It is, therefore, affected by multiple vulnerabilities. - An insufficient session expiration in MFA management views. CVE-2024-21722 - An open redirect i...
Joomla! 5.x < 5.0.3 Multiple Vulnerabilities
According to its self-reported version, the instance of Joomla! running on the remote web server is 1.5.x prior to 4.4.3 or 5.x prior to 5.0.3. It is, therefore, affected by multiple vulnerabilities. - An insufficient session expiration in MFA management views. CVE-2024-21722 - An open redirect i...
CVE-2024-21724
Joomla! CMS core contains a Cross-site Scripting (XSS) vulnerability due to inadequate input validation in media selection fields (CVE-2024-21724). Affected software: Joomla! core components handling media selection in extensions. Root cause: insufficient validation in media selection input paths...
Joomla 1.5.x < 3.10.15 / 4.0.x < 4.4.3 / 5.0.x < 5.0.3 Multiple Vulnerabilities (5904-joomla-5-0-3-and-4-4-3-security-and-bug-fix-release)
According to its self-reported version, the instance of Joomla! running on the remote web server is 1.5.x prior to 3.10.15, 4.0.x prior to 4.4.3, or 5.0.x prior to 5.0.3. It is, therefore, affected by multiple vulnerabilities. - The MFA management features did not properly terminate existing user...