Joomla 3.0.x < 3.10.17 / 4.0.x < 4.4.7 / 5.0.x < 5.1.3 Multiple Vulnerabilities (5910-joomla-5-1-3-and-4-4-7-security-and-bug-fix-release)

According to its self-reported version, the instance of Joomla! running on the remote web server is 3.0.x prior to 3.10.17, 4.0.x prior to 4.4.7, or 5.0.x prior to 5.1.3. It is, therefore, affected by multiple vulnerabilities. - Inadequate validation of URLs could result into an invalid check...

CVE-2024-40743

The stripImages and stripIframes methods didn't properly process inputs, leading to XSS vectors...

CVE-2024-40743

CVE-2024-40743 affects Joomla core Outputfilter::stripImages and Outputfilter::stripIframes: inputs are not properly processed, enabling XSS vectors. Root cause is improper handling in stripImages/stripIframes; impact is XSS exposure as described in multiple sources (e.g., BIT-JOOMLA-2024-40743, ...

PT-2024-29022 · Joomla +2 · Joomla! +1

Name of the Vulnerable Software and Affected Versions: No specific software or versions are mentioned in the provided descriptions. Description: The issue arises from the stripImages and stripIframes methods not properly processing inputs, which leads to XSS vectors. There is no information...