CVE-2024-21730

{"id": "CVE-2024-21730", "cveTags": [], "metrics": {}, "published": "2024-07-09T17:15:14.580", "references": [{"url": "https://developer.joomla.org/security-centre/936-20240702-core-self-xss-in-fancyselect-list-field-layout.html", "source": "security@joomla.org"}], "vulnStatus": "Awaiting Analysis", "weaknesses": [{"type": "Secondary", "source": "security@joomla.org", "description": [{"lang": "en", "value": "CWE-79"}]}], "descriptions": [{"lang": "en", "value": "The fancyselect list field layout does not correctly escape inputs, leading to a self-XSS vector."}, {"lang": "es", "value": "El dise\u00f1o del campo de lista fancyselect no escapa correctamente a las entradas, lo que genera un vector XSS propio."}], "lastModified": "2024-07-09T18:18:38.713", "sourceIdentifier": "security@joomla.org"}