CVE-2024-21725

CVE-2024-21725: [20240204] - Core - XSS in mail address outputs

Vendor Joomla! Project

Product Joomla! CMS

Weakness CWE-79 · XSS

Published February 20, 2024

Last update October 28, 2024

CVSS base score

—

What the vulnerability does

01Description

Inadequate escaping of mail addresses lead to XSS vulnerabilities in various components.

Key dates

February 20, 2024 CVE published

October 28, 2024 Record updated

External resources

Related vulnerabilities

CVE CVE-2024-21725

CWE CWE-79

Vendor Joomla! Project

Product Joomla! CMS

Affected 4.0.0-4.4.2

Vendor Joomla! Project

Product Joomla! CMS

Affected 5.0.0-5.0.2