CVE-2023-38045

State: PUBLISHED · Published: 2023-08-07 · Updated: 2024-09-29 · Assigner: Joomla

Description

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in advcomsys.com oneVote component for Joomla. It allows XSS Targeting Non-Script Elements.

CWE

CWE-79 — CWE-79 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

Affected

admiror-design-studio.com / Admiror Gallery component for Joomla — v=5.0.0-5.2.0 [affected]

CVSS

(none)

References

https://extensions.joomla.org/extension/admiror-gallery/ product

Source

cvelistV5-main/cves/2023/38xxx/CVE-2023-38045.json