Home
MEDIUM: 5.9 CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:P/VC:H/VI:H/VA:L/SC:N/SI:N/SA:N/E:UDefault status
unaffected
3.0.0-5.4.6
affected
6.0.0-6.1.1
affected
Description
Improper validation leads to a generic XSS vector in the language override feature.
Problem types
CWE-79 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
Product status
3.0.0-5.4.6
6.0.0-6.1.1
Credits
Morris Baumgarten-Egemole
References
developer.joomla.org/...-xss-through-language-overrides.html