CVE-2023-50976: Transactions API Authorization by oleiman · Pull Request #14969 · redpanda-data/redpanda

CVE-2023-6905

CVE-2023-6903

CVE-2023-6904

CVE-2023-3907

An issue was discovered in Joomla! 4.0.0 through 4.2.4. Inadequate filtering of potentially malicious user input leads to reflected XSS vulnerabilities in com_media.

**Security Announcements**

**\[20221101\] - Core - RXSS through reflection of user input in com\_media**

*   **Project:** Joomla!
*   **SubProject:** CMS
*   **Impact:** Low
*   **Severity:** Low
*   **Probability:** Low
*   **Versions:** 4.0.0-4.2.4
*   **Exploit type:** Reflexted XSS
*   **Reported Date:** 2022-10-28
*   **Fixed Date:** 2022-11-08
*   **CVE Number:** CVE-2022-27914

**Description**

Inadequate filtering of potentially malicious user input leads to reflected XSS vulnerabilities in com\_media..

**Affected Installs**

Joomla! CMS versions 4.0.0-4.2.4

**Solution**

Upgrade to version 4.2.5

**Contact**

The JSST at the Joomla! Security Centre.

**Reported By:** https://github.com/Denitz

*

Headline

CVE-2022-27914: Joomla! Developer Network

CVE: Latest News