CVE-2024-26278

Description

The Custom Fields component not correctly filter inputs, leading to a XSS vector.

Affected packages (1)

• Bitnami/joomla>= 3.7.0, < 5.1.2

CVSS scores

References (2)

• WEBhttps://developer.joomla.org/security-centre/939-20240705-core-xss-in-com-fields-default-field-value.html
• WEBhttps://nvd.nist.gov/vuln/detail/CVE-2024-26278