- Project: Joomla!
- SubProject: CMS
- Severity: Low
- Versions: 3.2.0 through 3.6.5
- Exploit type: XSS
- Reported Date: 2016-December-23
- Fixed Date: 2017-April-25
- CVE Number: CVE-2017-7984
Inadequate filtering leads to XSS in the template manager component.
Joomla! CMS versions 3.2.0 through 3.6.5
Upgrade to version 3.7.0
The JSST at the Joomla! Security Centre.
Reported By: Chen Ruiqi, Codesafe team