An issue was discovered in Joomla! 3.9.0 through 3.9.23. The lack of escaping in mod_breadcrumbs aria-label attribute allows XSS attacks.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: Joomla
Published: 2021-01-12T20:19:49.480301Z
Updated: 2024-09-16T16:23:39.058Z
Reserved: 2021-01-06T00:00:00
Link: CVE-2021-23124
Vulnrichment
No data.
NVD
Status : Analyzed
Published: 2021-01-12T21:15:18.947
Modified: 2021-01-19T15:59:37.627
Link: CVE-2021-23124
Redhat
No data.