CVE-2025-54476

  1. OpenCVE
  2. Vulnerabilities (CVE)
  3. CVE-2025-54476
Improper handling of input could lead to an XSS vector in the checkAttribute method of the input filter framework class.
CVSS

No CVSS.

References
Link Resource
https://developer.joomla.org/security-centre/1010-20250901-core-inadequate-content-filtering-within-the-checkattribute-filter-code.html
Configurations

No configuration.

History

30 Sep 2025, 17:15

Type Values Removed Values Added
References
  • {'url': 'https://developer.joomla.org/security-centre/929-20240205-core-inadequate-content-filtering-within-the-filter-code.html', 'source': 'security@joomla.org'}
  • () https://developer.joomla.org/security-centre/1010-20250901-core-inadequate-content-filtering-within-the-checkattribute-filter-code.html -

30 Sep 2025, 16:15

Type Values Removed Values Added
New CVE
Information

Published : 2025-09-30 16:15

Updated : 2025-10-02 19:12

NVD link : CVE-2025-54476

Mitre link : CVE-2025-54476

CVE.ORG link : CVE-2025-54476

JSON object : View

Products Affected

No product.

CWE
CWE-79

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')