Peter Martin

**Name of the Vulnerable Software and Affected Versions** Joomla! versions 4.0.0 through 4.2.3 **Description** An issue was discovered in Joomla! where sites with publicly enabled debug mode exposed data of previous requests. **Recommendations** For Joomla! versions 4.0.0 through 4.2.3, disable the publicly enabled debug mode to prevent exposure of previous request data.

**Name of the Vulnerable Software and Affected Versions** Joomla! versions prior to 3.9.21 **Description** A security issue was found in the mod latestactions module, where the lack of proper escaping allows for cross-site scripting (XSS) attacks. **Recommendations** For versions prior to 3.9.21, update to version 3.9.21 or later to resolve the issue.