Unrated severityNVD Advisory· Published Mar 30, 2022· Updated Feb 25, 2026
[20220304] - Core - Missing input validation within com_fields class inputs
CVE-2022-23796
Description
An issue was discovered in Joomla! 3.7.0 through 3.10.6. Lack of input validation could allow an XSS attack using com_fields.
Affected products
1- Range: 3.7.0-3.10.6
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
1- developer.joomla.org/security-centre/873-20220304-core-missing-input-validation-within-com-fields-class-inputs.htmlmitrex_refsource_MISCvendor-advisory
News mentions
0No linked articles in our index yet.