An issue was discovered in Joomla! before 3.9.2. Inadequate checks of the Global Configuration helpurl settings allowed stored XSS.Referenceshttps://developer.joomla.org/security-centre/763-20190104-core-stored-xss-issue-in-the-global-configuration-help-urlhttp://www.securityfocus.com/bid/106638
