CVE-2019-7744 — Cross-site Scripting in Joomla !

Severity

6.1MEDIUMNVD

EPSS

0.2%

top 62.79%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Timeline

PublishedFeb 12

Latest updateMay 14

Description

An issue was discovered in Joomla! before 3.9.3. Inadequate filtering on URL fields in various core components could lead to an XSS vulnerability.

CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:NExploitability: 2.8 | Impact: 2.7

▶NVDjoomla/joomla_!2.5.0 — 3.9.2

GHSA

GHSA-r2rh-f67c-x3v7: An issue was discovered in Joomla! before 3↗2022-05-14

▶

CVEList

CVE-2019-7744: An issue was discovered in Joomla! before 3↗2019-02-12

▶