CVE-2021-23124

Summary

An issue was discovered in Joomla! 3.9.0 through 3.9.23. The lack of escaping in mod_breadcrumbs aria-label attribute allows XSS attacks.

Affected Software

VendorProductVersion RangeStatus
Joomla! ProjectJoomla! CMS3.9.0-3.9.23affected

Weaknesses

  • XSS

ADP Enrichment

CVE Program Container

Additional References

References