Vulnerability Details CVE-2023-23754
An issue was discovered in Joomla! 4.2.0 through 4.3.1. Lack of input validation caused an open redirect and XSS issue within the new mfa selection screen.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.0
EPSS Ranking 2.3%
CVSS Severity
CVSS v3 Score 6.1
References
Products affected by CVE-2023-23754
-
cpe:2.3:a:joomla:joomla!:4.2.0
-
cpe:2.3:a:joomla:joomla!:4.2.1
-
cpe:2.3:a:joomla:joomla!:4.2.2
-
cpe:2.3:a:joomla:joomla!:4.2.3
-
cpe:2.3:a:joomla:joomla!:4.2.4
-
cpe:2.3:a:joomla:joomla!:4.2.5
-
cpe:2.3:a:joomla:joomla!:4.2.6
-
cpe:2.3:a:joomla:joomla!:4.2.7
-
cpe:2.3:a:joomla:joomla!:4.2.8
-
cpe:2.3:a:joomla:joomla!:4.2.9
-
cpe:2.3:a:joomla:joomla!:4.3.0
-
cpe:2.3:a:joomla:joomla!:4.3.1