Allele Security Alert
Browserside mime-type sniffing causes XSS attack vectors
Open Source Matters, Inc
Joomla 1.0.0 through 3.9.2
Proof of concept
A combination of specific webserver configurations, in connection with specific file types and browserside mime-type sniffing causes a XSS attack vector.
If there is any error in this alert or you wish a comprehensive analysis, let us know.
Last modified: February 13, 2019