XSS Vulnerability in Joomla! Subform Fieldtype

XSS Vulnerability in Joomla! Subform Fieldtype

CVE-2019-12766 · MEDIUM Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

An issue was discovered in Joomla! before 3.9.7. The subform fieldtype does not sufficiently filter or validate input of subfields. This leads to XSS attack vectors.

Learn more about our Web Application Penetration Testing UK.