XSS Vulnerability in Joomla! Subform Fieldtype
CVE-2019-12766 · MEDIUM Severity
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
An issue was discovered in Joomla! before 3.9.7. The subform fieldtype does not sufficiently filter or validate input of subfields. This leads to XSS attack vectors.
Learn more about our Web Application Penetration Testing UK.