XSS in Joomla! Project Cms

CVE-2026-48954

Improper validation leads to a generic XSS vector in the language override feature.

Vulnerability class: XSS (Cross-Site Scripting)

Affected products

Weakness classification (CWE)

References