Description
An issue was discovered in Joomla! before 3.9.7. The subform fieldtype does not sufficiently filter or validate input of subfields. This leads to XSS attack vectors.
Remediation
References
Related Vulnerabilities
WordPress Plugin Download Manager Cross-Site Scripting (3.2.52)
MediaWiki Resource Management Errors Vulnerability (CVE-2015-2937)
Oracle Database Server CVE-2015-4857 Vulnerability (CVE-2015-4857)
WordPress Plugin Answer My Question SQL Injection (1.3)
Magento Insufficient Verification of Data Authenticity Vulnerability (CVE-2019-8124)