CVE-2025-54476
Improper handling of input could lead to an XSS vector in the checkAttribute method of the input filter framework class.
| Software | From | Fixed in |
|---|---|---|
Joomla / filter
|
4.0.0 | 4.0.0.x |
|
Joomla / filter
|
4.0.0 | 4.0.1 |
|
Joomla / filter
|
3.0.0 | 3.0.5 |
|
Joomla / filter
|
- | 2.0.6 |
- https://developer.joomla.org/security-centre/1010-20250901-core-inadequate-content-filtering-within-the-checkattribute-filter-code.html
- https://github.com/joomla-framework/filter/commit/188dd3fccd6fa0532d105a52736affdf6b166217
- https://github.com/joomla-framework/filter/commit/852c7e101c649500d3af58ffb8baf15d7c86d825
- https://github.com/joomla-framework/filter/commit/fcde280785f188e93530f7da68102f7dd8f9f723
Deep Security Visibility Without the Complexity
SynScan provides clear, real-time security insights so you can monitor your attack surface, spot risks early, and act fast—without extra complexity.
- No setup fees
- 5-min deployment
- Cancel anytime