CVE-2023-23756

Description

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in advcomsys.com oneVote component for Joomla. It allows XSS Targeting Non-Script Elements.

Affected products

• advcomsys.com / oneVote component for Joomla1.7.0 – 1.7.0

References

• MISChttps://extensions.joomla.org/vulnerable-extensions/vulnerable/one-vote-1-7-xss-cross-site-scripting/