CNNVD-202509-4463 Information

CNNVD ID

CNNVD-202509-4463

Related CVE

CVE-2025-54476

• CNNVD Published: 2025-09-30

Description (Chinese)

Joomla! CMS是Joomla!开源的一个内容管理系统。 Joomla! CMS输入过滤框架存在安全漏洞，该漏洞源于checkAttribute方法输入处理不当，可能导致跨站脚本攻击。

Description (English)

CMS is an open-source content management system. Joomla! The CMS input filter framework contains a security loophole that stems from the mishandling of the checkAttribute method, which may result in a cross-site script attack.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

Joomla!

Published

2025-09-30

Last Modified

2026-02-24

References

https://developer.joomla.org/security-centre/1010-20250901-core-inadequate-content-filtering-within-the-checkattribute-filter-code.html https://vigilance.fr/vulnerability/Joomla-Core-Cross-Site-Scripting-via-CheckAttribute-Filter-Code-48348

Patch

https://developer.joomla.org/security-centre/1010-20250901-core-inadequate-content-filtering-within-the-checkattribute-filter-code.html