Unrated severityNVD Advisory· Published May 30, 2023· Updated Jan 10, 2025

[20230501] - Core - Open Redirect and XSS within the mfa select

CVE-2023-23754

Description

An issue was discovered in Joomla! 4.2.0 through 4.3.1. Lack of input validation caused an open redirect and XSS issue within the new mfa selection screen.

Affected products

Joomlaprojects/Joomla! CMSv5
Range: 4.2.0-4.3.1

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

developer.joomla.org/security-centre/899-20230501-core-open-redirects-and-xss-within-the-mfa-selection.htmlmitrevendor-advisory

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000