In Joomla! before 3.8.4, lack of escaping in the module chromes leads to XSS vulnerabilities in the module system.Referenceshttps://developer.joomla.org/security-centre/718-20180101-core-xss-vulnerability.htmlhttp://www.securitytracker.com/id/1040316http://www.securityfocus.com/bid/102921
