4 matches found
BIT-JOOMLA-2024-27186 [20240803] - Core - XSS in HTML Mail Templates
The mail template feature lacks an escaping mechanism, causing XSS vectors in multiple extensions...
CVE-2024-27186
The mail template feature lacks an escaping mechanism, causing XSS vectors in multiple extensions...
CVE-2024-27186
The mail template feature lacks an escaping mechanism, causing XSS vectors in multiple extensions...
CVE-2024-27186
CVE-2024-27186 affects Joomla! via the mail template feature lacking an escaping mechanism, enabling XSS vectors across multiple extensions. The vulnerability stems from insufficient input escaping in mail templates, with CVSSv3.1 base score 6.1 (MEDIUM). Affected component: the HTML mail templat...