Joomla! < 3.8.9 XSS vulnerability in language switcher module
Medium Nessus Plugin ID 111064
SynopsisThe remote web server contains a PHP application that is affected by a XSS vulnerability.
DescriptionAccording to its self-reported version number, the Joomla! installation running on the remote web server is prior to 3.8.9. It is, therefore, affected by a XSS vulnerability.
Note that Nessus has not attempted to exploit these issues but has instead relied only on the application's self-reported version number.
SolutionUpgrade to Joomla! version 3.8.9 or later.