2024-07-09 18:03:12 +00:00
|
|
|
{
|
|
|
|
|
"id": "CVE-2024-26278",
|
|
|
|
|
"sourceIdentifier": "security@joomla.org",
|
|
|
|
|
"published": "2024-07-09T17:15:14.970",
|
2024-07-09 20:03:11 +00:00
|
|
|
"lastModified": "2024-07-09T18:18:38.713",
|
|
|
|
|
"vulnStatus": "Awaiting Analysis",
|
2024-07-09 18:03:12 +00:00
|
|
|
"cveTags": [],
|
|
|
|
|
"descriptions": [
|
|
|
|
|
{
|
|
|
|
|
"lang": "en",
|
|
|
|
|
"value": "The Custom Fields component not correctly filter inputs, leading to a XSS vector."
|
2024-07-14 02:06:08 +00:00
|
|
|
},
|
|
|
|
|
{
|
|
|
|
|
"lang": "es",
|
|
|
|
|
"value": "El componente Custom Fields no filtra correctamente las entradas, lo que genera un vector XSS."
|
2024-07-09 18:03:12 +00:00
|
|
|
}
|
|
|
|
|
],
|
|
|
|
|
"metrics": {},
|
|
|
|
|
"weaknesses": [
|
|
|
|
|
{
|
|
|
|
|
"source": "security@joomla.org",
|
|
|
|
|
"type": "Secondary",
|
|
|
|
|
"description": [
|
|
|
|
|
{
|
|
|
|
|
"lang": "en",
|
|
|
|
|
"value": "CWE-79"
|
|
|
|
|
}
|
|
|
|
|
]
|
|
|
|
|
}
|
|
|
|
|
],
|
|
|
|
|
"references": [
|
|
|
|
|
{
|
|
|
|
|
"url": "https://developer.joomla.org/security-centre/939-20240705-core-xss-in-com-fields-default-field-value.html",
|
|
|
|
|
"source": "security@joomla.org"
|
|
|
|
|
}
|
|
|
|
|
]
|
|
|
|
|
}
|
