CVE-2023-50976: Transactions API Authorization by oleiman · Pull Request #14969 · redpanda-data/redpanda

CVE-2023-6905

CVE-2023-6903

CVE-2023-6904

CVE-2023-3907

An issue was discovered in Joomla! 3.7.0 through 3.10.6. Lack of input validation could allow an XSS attack using com_fields.

**Security Announcements**

**\[20220304\] - Core - Missing input validation within com\_fields class inputs**

*   **Project:** Joomla!
*   **SubProject:** CMS
*   **Impact:** Moderate
*   **Severity:** Low
*   **Probability:** Low
*   **Versions:** 3.7.0 - 3.10.6
*   **Exploit type:** XSS
*   **Reported Date:** 2021-05-06
*   **Fixed Date:** 2022-03-29
*   **CVE Number:** CVE-2022-23796

**Description**

Lack of input validation could allow an XSS attack using com\_fields

**Affected Installs**

Joomla! CMS versions 3.7.0 - 3.10.6

**Solution**

Upgrade to version 3.10.7

**Contact**

The JSST at the Joomla! Security Centre.

**Reported By:** Hoàng Nguyễn

*   
*

Headline

CVE-2022-23796: Joomla! Developer Network

CVE: Latest News