The open source content management system (CMS) Joomla is vulnerable to multiple cross-site scripting (XSS) security vulnerabilities that could allow remote code execution (RCE).
Sonar’s vulnerability research team has discovered that a core flaw, identified as CVE-2024-21726, is at the heart of the problems. It affects the main filter component of Joomla.
“Inadequate content filtering leads to XSS vulnerability in various components”, according to Joomla consultancywhich calls the bug “moderate” but does not include a CVSS vulnerability severity score.
Cyber attackers can exploit XSS bugs to inject malicious scripts into harmless, trustworthy websites, which in turn can steal visitor information, perform malicious redirects, or infect users with malware. In this case, attackers can trigger problems by convincing an administrator to click on a malicious link.
Joomla powers approximately 2% of all websiteswith most publicly accessible distributions, making it a file current goal for threat actors. The problem is solved Joomla versions 5.0.3/4.4.3released today, so users should update it as soon as possible to avoid falling prey to attackers.