PT-2026-56226 · Joomla · Joomla! Cms

Pavel Kohout

·

Published

2026-07-07

·

Updated

2026-07-07

·

CVE-2026-48953

CVSS v4.0

5.9

Medium

VectorAV:N/AC:L/AT:N/PR:H/UI:P/VC:H/VI:H/VA:L/SC:N/SI:N/SA:N/E:U/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Lack of escaping leads to an XSS vulnerability in the generic image output layout.

Fix

XSS

Found an issue in the description? Have something to add? Feel free to write us 👾

Weakness Enumeration

Related Identifiers

CVE-2026-48953

Affected Products

Joomla! Cms