An issue was discovered in Joomla! 3.0.0 through 3.9.25. Inadequate escaping allowed XSS attacks using the logo parameter of the default templates on error page
References
Link | Resource |
---|---|
https://developer.joomla.org/security-centre/850-20210401-core-escape-xss-in-logo-parameter-error-pages.html | Vendor Advisory |
Configurations
Information
Published : 2021-04-14 11:15
Updated : 2021-04-22 08:54
NVD link : CVE-2021-26030
Mitre link : CVE-2021-26030
JSON object : View
CWE
CWE-79
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
Products Affected
joomla
- joomla\!