JoomRecipe, 4.2.2, 3rd party extension, XSS (Cross Site Scripting)
joomrecipe v4.2.2 issue with XSS vulnerability was fixed in last version 4.2.4 today , check out here: https://www.joomboost.com/blog-updates/joomrecipe-v4-2-2-security-announcement.html