Description
An issue was discovered in Joomla! 3.0.0 through 3.9.27. Inadequate escaping in the rules field of the JForm API leads to a XSS vulnerability.
Remediation
References
Related Vulnerabilities
WordPress Plugin WP Cost Estimation & Payment Forms Builder Directory Traversal (9.659)
WordPress Plugin eCommerce Product Catalog for WordPress Cross-Site Scripting (3.0.38)
WordPress Plugin Registrations for the Events Calendar-Event Registration SQL Injection (2.7.5)
Joomla Incorrect Permission Assignment for Critical Resource Vulnerability (CVE-2011-4912)
Oracle Application Server CVE-2008-0340 Vulnerability (CVE-2008-0340)