Beta

Report

Joomla 3.0.0-3.9.26 is vulnerable to Unauthenticated Adding HTML to the executable block list of MediaHelper::canUpload vulnerability

Unauthenticated
Published
2021-03-04

Unauthenticated Adding HTML to the executable block list of MediaHelper::canUpload vulnerability

CVE

https://www.cve.org/CVERecord?id=CVE-2021-26032

CVSS

Score:6.1

Severity:Medium

Version:3.0.0-3.9.26

There is a patch available in v3.9.27 and we strongly recommend you update to this version as soon as possible.