vulnerability
Joomla!: [20210701] - Core - XSS in JForm Rules field (CVE-2021-26035)
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 4 | (AV:N/AC:M/Au:N/C:N/I:P/A:N) | Jul 8, 2021 | Jul 8, 2021 | Aug 11, 2025 |
Severity
4
CVSS
(AV:N/AC:M/Au:N/C:N/I:P/A:N)
Published
Jul 8, 2021
Added
Jul 8, 2021
Modified
Aug 11, 2025
Description
An issue was discovered in Joomla! 3.0.0 through 3.9.27. Inadequate escaping in the rules field of the JForm API leads to a XSS vulnerability.
Solution
joomla-upgrade-3_9_28
NEW
Explore Exposure Command
Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.