Allele Security Alert
ASA-2019-00076
Identifier(s)
ASA-2019-00076, CVE-2019-7744
Title
Lack of URL filtering in various core components
Vendor(s)
Open Source Matters, Inc
Product(s)
Joomla
Affected version(s)
Joomla versions 2.5.0 through 3.9.2
Fixed version(s)
Joomla version 3.9.3
Proof of concept
Unknown
Description
Inadequate filtering on URL fields in various core components could lead to an XSS vulnerability.
Technical details
Unknown
Credits
Antonin Steinhauser
Reference(s)
Security Announcements
https://developer.joomla.org/security-centre.html
CVE-2019-7744
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-7744
CVE-2019-7744
https://nvd.nist.gov/vuln/detail/CVE-2019-7744
If there is any error in this alert or you wish a comprehensive analysis, let us know.
Last modified: February 13, 2019