11 matches found
BIT-JOOMLA-2025-63083 Joomla! Core - [20260102] - XSS vector in the pagebreak plugin
Lack of output escaping leads to a XSS vector in the pagebreak plugin...
Joomla! 6.x < 6.0.2 Multiple Vulnerabilities
According to its self-reported version, the instance of Joomla! running on the remote web server is 3.9.x prior to 5.4.2, or 6.x prior to 6.0.2. It is, therefore, affected by multiple vulnerabilities. - Lack of input filtering leads to an XSS vector in the HTML filter code related to data URLs in...
CVE-2025-63083
Lack of output escaping leads to a XSS vector in the pagebreak plugin...
CVE-2025-63083
Lack of output escaping leads to a XSS vector in the pagebreak plugin...
CVE-2025-63083 Joomla! Core - [20260102] - XSS vector in the pagebreak plugin
Lack of output escaping leads to a XSS vector in the pagebreak plugin...
CVE-2025-63083 Joomla! Core - [20260102] - XSS vector in the pagebreak plugin
Lack of output escaping leads to a XSS vector in the pagebreak plugin...
CVE-2025-63083
CVE-2025-63083 is a Joomla! Core issue describing a lack of output escaping that enables a cross-site scripting (XSS) vector in the pagebreak plugin. The connected sources specify affected software (Joomla! core, pagebreak/plugin code paths) and indicate an XSS risk arising from insufficient esca...
Joomla! CMS 跨站脚本漏洞
Joomla! CMS is an open source content management system for Joomla! A cross-site scripting vulnerability exists in Joomla! CMS that stems from insufficient output escaping, which could lead to cross-site scripting attack vectors in the pagebreak plugin...
Joomla 3.9.x < 5.4.2 / 6.0.x < 6.0.2 Joomla 6.0.2 & 5.4.2 Security & Bugfix Release (5942-joomla-6-0-2-and-5-4-2-security-bugfix-release)
According to its self-reported version, the instance of Joomla! running on the remote web server is 3.9.x prior to 5.4.2 or 6.0.x prior to 6.0.2. It is, therefore, affected by a vulnerability. - Lack of output escaping leads to a XSS vector in the pagebreak plugin. CVE-2025-63083 Note that Nessus...
PT-2026-1463
Name of the Vulnerable Software and Affected Versions pagebreak plugin affected versions not specified Description A flaw exists due to missing output escaping, resulting in a cross-site scripting XSS vector in the pagebreak plugin. This could allow for the injection of malicious scripts into web...
[20260102] - Core - XSS vectors in the pagebreak and pagenavigation plugins
Lack of output escaping leads to a XSS vector in the pagebreak and pagenavigation plugins...