Lack of output escaping leads to a XSS vector in the content history component.CreditsPhan Phan Hai LongReferenceshttps://developer.joomla.org/security-centre/1035-20260503-core-xss-in-com-contenthistory
