CVE-2026-30895
Analyzed Analyzed - Analysis Complete
XSS in Joomla com_content Readmore Links

Publication date: 2026-05-26

Last updated on: 2026-05-27

Assigner: Joomla! Project

Description
Lack of output escaping leads to a XSS vector in the readmore links for com_content.
CVSS Scores
EPSS Scores
Probability:
Percentile:
Meta Information
Published
2026-05-26
Last Modified
2026-05-27
Generated
2026-06-16
AI Q&A
2026-05-26
EPSS Evaluated
2026-06-14
NVD
CVE-2026-30895
EUVD
EUVD-2026-31874
Affected Vendors & Products
Showing 2 associated CPEs
Vendor Product Version / Range
joomla joomla! From 3.0.0 (inc) to 5.4.6 (exc)
joomla joomla! From 6.0.0 (inc) to 6.1.1 (exc)
Helpful Resources
Exploitability
CWE
CWE Icon
KEV
KEV Icon
CWE ID Description
CWE-79 The product does not neutralize or incorrectly neutralizes user-controllable input before it is placed in output that is used as a web page that is served to other users.
Attack-Flow Graph
AI Quick Actions
Instant insights powered by AI
Executive Summary

CVE-2026-30895 is a Cross-Site Scripting (XSS) vulnerability in Joomla! CMS versions 4.0.0 through 5.4.5 and 6.0.0 through 6.1.0.

The vulnerability occurs due to insufficient output escaping in the content history component, specifically in the readmore links, which allows attackers to inject and execute malicious scripts.

This means that when a user interacts with these readmore links, malicious code could run in their browser, potentially compromising their session or data.

Impact Analysis

This XSS vulnerability can allow attackers to execute malicious scripts in the context of a user's browser session.

  • Steal sensitive information such as cookies or session tokens.
  • Perform actions on behalf of the user without their consent.
  • Potentially redirect users to malicious websites or display fraudulent content.

Overall, it can lead to compromised user accounts, data breaches, and loss of trust in the affected Joomla! CMS site.

Mitigation Strategies

To mitigate the CVE-2026-30895 vulnerability, you should upgrade your Joomla! CMS to version 5.4.6 or 6.1.1 or later, where the issue has been fixed.

This vulnerability is caused by insufficient output escaping in the content history component, which allows Cross-Site Scripting (XSS) attacks.

Additionally, you can contact the Joomla! Security Strike Team (JSST) at the Joomla! Security Centre for further assistance.

Detection Guidance

This vulnerability is a Cross-Site Scripting (XSS) issue in the readmore links of the Joomla! CMS content history component caused by insufficient output escaping.

Detection typically involves inspecting the affected Joomla! CMS versions (4.0.0 through 5.4.5 and 6.0.0 through 6.1.0) for unescaped user input in readmore links that could allow script injection.

Since the vulnerability is related to web content rendering, network or system commands alone may not be sufficient for detection. Instead, manual or automated testing of the readmore links for XSS payloads is recommended.

No specific detection commands are provided in the available resources.

Chat Assistant
Ask questions about this CVE
Hi! I’m here to help you understand CVE-2026-30895. Ask me anything about the vulnerability, its impact, or mitigation strategies.
0/70
EPSS Chart