Description

An issue was discovered in Joomla! 3.0.0 through 3.9.27. Inadequate escaping in the imagelist view of com_media leads to a XSS vulnerability.

Remediation

References

CVE-2021-26039

Related Vulnerabilities

Apache Traffic Server Allocation of Resources Without Limits or Throttling Vulnerability (CVE-2019-9518)

OpenSSL Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability (CVE-2015-1789)

WordPress Plugin Snazzy Archives Cross-Site Scripting (1.7.1)

Varnish Cache Reachable Assertion Vulnerability (CVE-2019-15892)

WordPress Plugin Link Library 'searchll' Parameter SQL Injection (5.2.1)

Severity

Medium

Classification

CVE-2021-26039 CWE-707 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

Tags

Missing Update Known Vulnerabilities