CVE-2024-40743 | SynScan

Vulnerability Database

289,599

Total vulnerabilities in the database

CVE-2024-40743

The stripImages and stripIframes methods didn't properly process inputs, leading to XSS vectors.

Published: Aug 20, 2024
Updated: Aug 21, 2024
CVE: CVE-2024-40743
Exploit:

No technical information available.

CWEs:

CWE-79

OWASP TOP 10:

A7 - Cross-Site Scripting (XSS)

Affected Software
References

Software	From	Fixed in
Joomla / joomla	4.0.0	4.4.6
Joomla / joomla	5.0.0	5.1.3
Joomla / joomla	3.0.0	3.10.17

https://developer.joomla.org/security-centre/946-20240805-core-xss-vectors-in-outputfilter-strip-methods.html