Unrated severityNVD Advisory· Published Jul 9, 2024· Updated Mar 14, 2025
[20240705] - Core - XSS in com_fields default field value
CVE-2024-26278
Description
The Custom Fields component not correctly filter inputs, leading to a XSS vector.
Affected products
1- Range: 3.7.0-3.10.15
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
1News mentions
0No linked articles in our index yet.