An issue was discovered in Joomla! before 3.9.21. Lack of escaping in mod_latestactions allows XSS attacks.Referenceshttps://developer.joomla.org/security-centre/824-20200801-core-xss-in-mod-latestactions
