[20221001] Low Severity - Critical Impact - Disclosure of critical information in debug mode - Joomla 4 sites with publicly enabled debug mode exposed data of previous requests.
[20221002] Low Severity - Low Impact - RXSS through reflection of user input in headings - Inadequate filtering of potentially malicious user input leads to reflected XSS vulnerabilities in various components.