Description
In Joomla! Core before 3.8.8, inadequate filtering of file and folder names leads to various XSS attack vectors in the media manager.
Remediation
References
Related Vulnerabilities
Jboss EAP Uncontrolled Resource Consumption Vulnerability (CVE-2020-25689)
WordPress URL Redirection to Untrusted Site ('Open Redirect') Vulnerability (CVE-2018-10101)
Oracle Database Server CVE-2006-5335 Vulnerability (CVE-2006-5335)
Atlassian Jira Incorrect Authorization Vulnerability (CVE-2019-8446)