Description
Lack of output escaping leads to a XSS vector in the readmore links for com_content.
Published: 2026-05-26
Score: 6.9 Medium
EPSS: < 1% Very Low
KEV: No
Impact: n/a
Action: n/a
AI Analysis

Impact

The vulnerability arises from the lack of output escaping in readmore links for the com_content component, which allows an attacker to inject JavaScript that will execute in the browsers of anyone who views the affected links. This can lead to unauthorized script execution, session hijacking, or defacement of the site. The weakness is an example of OWASP CWE‑79, affecting the confidentiality and integrity of the application user base.

Affected Systems

Joomla! CMS installations that use the com_content component are affected. No specific version information is provided, so any releases that include this component and have not yet applied the advisory should be considered at risk.

Risk and Exploitability

The CVSS score of 6.9 indicates moderate severity, with a typical exploitation requiring the attacker to supply or influence content that contains a malicious readmore URL. Since the EPSS score is not available, the likelihood of exploitation cannot be quantified. The vulnerability is not listed in CISA’s KEV catalog, suggesting no confirmed widespread exploitation as of the last update. An attacker with the ability to create or edit content could craft a readmore link that executes arbitrary JavaScript in the victim’s browser, potentially compromising credentials or redirecting traffic.

Generated by OpenCVE AI on May 26, 2026 at 18:23 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Apply the latest Joomla! CMS update that addresses the readmore link XSS flaw
  • If an immediate update is not possible, disable or remove the readmore link feature from com_content or replace the component with a sanitized alternative
  • Configure Joomla! to enforce output escaping and filter user–supplied URLs in article titles to prevent injection of malicious scripts

Generated by OpenCVE AI on May 26, 2026 at 18:23 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

History

Wed, 27 May 2026 13:30:00 +0000

Type Values Removed Values Added
First Time appeared Joomla joomla\!
CPEs cpe:2.3:a:joomla:joomla\!:*:*:*:*:*:*:*:*
Vendors & Products Joomla joomla\!
Metrics cvssV3_1

{'score': 6.1, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N'}

Wed, 27 May 2026 10:30:00 +0000

Type Values Removed Values Added
First Time appeared Joomla
Joomla joomla!
Vendors & Products Joomla
Joomla joomla!

Tue, 26 May 2026 18:30:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}

Tue, 26 May 2026 17:00:00 +0000

Type Values Removed Values Added
Description Lack of output escaping leads to a XSS vector in the readmore links for com_content.
Title Joomla! Core - [20260504] - XSS in readmore links
Weaknesses CWE-79
References
Metrics cvssV4_0

{'score': 6.9, 'vector': 'CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:P/VC:H/VI:L/VA:L/SC:N/SI:N/SA:N'}

Subscriptions

Joomla Joomla! Joomla\!
cve-icon MITRE

Status: PUBLISHED

Assigner: Joomla

Published:

Updated: 2026-05-27T09:12:08.924Z

Reserved: 2026-03-06T04:55:46.057Z

Link: CVE-2026-30895

cve-icon Vulnrichment

Updated: 2026-05-26T17:26:49.691Z

cve-icon NVD

Status : Analyzed

Published: 2026-05-26T17:16:31.037

Modified: 2026-06-17T10:33:06.527

Link: CVE-2026-30895

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-05-27T10:04:36Z

Weaknesses
  • CWE-79

    Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')