ID CVE-2010-4405Type cveReporter cve@mitre.orgModified 2010-12-16T05:00:00
Description
Cross-site scripting (XSS) vulnerability in the Yannick Gaultier sh404SEF component before 2.1.8.777 for Joomla! allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
{"id": "CVE-2010-4405", "bulletinFamily": "NVD", "title": "CVE-2010-4405", "description": "Cross-site scripting (XSS) vulnerability in the Yannick Gaultier sh404SEF component before 2.1.8.777 for Joomla! allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.", "published": "2010-12-06T13:37:00", "modified": "2010-12-16T05:00:00", "cvss": {"score": 4.3, "vector": "AV:N/AC:M/Au:N/C:N/I:P/A:N"}, "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2010-4405", "reporter": "cve@mitre.org", "references": ["http://twitter.com/jeffchannell/status/8603529560195072", "http://dev.anything-digital.com/Forum/Announcements/9100-Urgent-sh404SEF-security-release-Joomla-1.5/", "http://secunia.com/advisories/42430", "http://www.securityfocus.com/bid/45135"], "cvelist": ["CVE-2010-4405"], "type": "cve", "lastseen": "2019-05-29T18:10:32", "history": [], "edition": 1, "hashmap": [{"key": "affectedSoftware", "hash": "a87621bab5a3f35b3c2e1172f7274f17"}, {"key": "bulletinFamily", "hash": "601892ece72be3be2f57266ca2354792"}, {"key": "cpe", "hash": "bcd4737d6041bf8dab4c705ad90fb58e"}, {"key": "cpe23", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "cvelist", "hash": "5982eec88d37a8d7a085bd186c8cb32d"}, {"key": "cvss", "hash": "f74a1c24e49a5ecb0eefb5e51d4caa14"}, {"key": "cvss2", "hash": "25131d66a9f3961140b068f4b41aa42b"}, {"key": "cvss3", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "cwe", "hash": "34e69e045b64924bccf865d56b6918a2"}, {"key": "description", "hash": "1bd2016d31196347914f339e706c5b60"}, {"key": "href", "hash": "574c05addff64e93c3a73d06a8042d0a"}, {"key": "modified", "hash": "f8390f105970023e0095ebc50be0fa5a"}, {"key": "published", "hash": "b3815bb3da0bfeaaa57b99c12d005cc5"}, {"key": "references", "hash": "937328c3ecd515e9b10e67cbb363fdc0"}, {"key": "reporter", "hash": "444c2b4dda4a55437faa8bef1a141e84"}, {"key": "title", "hash": "e6c621833f7dff201af850d1e1de100b"}, {"key": "type", "hash": "1716b5fcbb7121af74efdc153d0166c5"}], "hash": "b39bd974b079110d82daa3fed4df980a864312da9c4a6a6047c9a7480a617a8e", "viewCount": 1, "enchantments": {"score": {"value": 4.2, "vector": "NONE", "modified": "2019-05-29T18:10:32"}, "dependencies": {"references": [], "modified": "2019-05-29T18:10:32"}, "vulnersScore": 4.2}, "objectVersion": "1.3", "cpe": ["cpe:/a:anything-digital:sh404sef:1.5.5.388", "cpe:/a:anything-digital:sh404sef:2.1.6.749", "cpe:/a:anything-digital:sh404sef:2.1.4.734", "cpe:/a:anything-digital:sh404sef:1.5.6.398", "cpe:/a:anything-digital:sh404sef:2.0.3.545", "cpe:/a:anything-digital:sh404sef:1.5.8.432", "cpe:/a:anything-digital:sh404sef:1.5.12.464", "cpe:/a:anything-digital:sh404sef:1.5.2.255", "cpe:/a:anything-digital:sh404sef:2.1.2.649", "cpe:/a:anything-digital:sh404sef:1.5.9.434", "cpe:/a:anything-digital:sh404sef:2.0.2.542", "cpe:/a:anything-digital:sh404sef:1.5.4.302", "cpe:/a:anything-digital:sh404sef:2.1.5.746", "cpe:/a:anything-digital:sh404sef:1.5.7.407", "cpe:/a:anything-digital:sh404sef:2.1.1.644", "cpe:/a:anything-digital:sh404sef:2.0.1.531", "cpe:/a:anything-digital:sh404sef:2.1.0.641", "cpe:/a:anything-digital:sh404sef:1.5.10.446", "cpe:/a:anything-digital:sh404sef:1.5.11.459", "cpe:/a:anything-digital:sh404sef:2.1.3.680", "cpe:/a:anything-digital:sh404sef:1.5.3.296", "cpe:/a:anything-digital:sh404sef:2.0.0"], "affectedSoftware": [{"name": "anything-digital sh404sef", "operator": "eq", "version": "1.5.2.255"}, {"name": "anything-digital sh404sef", "operator": "eq", "version": "1.5.10.446"}, {"name": "anything-digital sh404sef", "operator": "eq", "version": "2.0.2.542"}, {"name": "anything-digital sh404sef", "operator": "eq", "version": "1.5.6.398"}, {"name": "anything-digital sh404sef", "operator": "eq", "version": "1.5.7.407"}, {"name": "anything-digital sh404sef", "operator": "eq", "version": "2.0.1.531"}, {"name": "anything-digital sh404sef", "operator": "eq", "version": "2.0.3.545"}, {"name": "anything-digital sh404sef", "operator": "eq", "version": "1.5.3.296"}, {"name": "anything-digital sh404sef", "operator": "eq", "version": "2.1.1.644"}, {"name": "anything-digital sh404sef", "operator": "eq", "version": "2.1.4.734"}, {"name": "anything-digital sh404sef", "operator": "eq", "version": "2.1.0.641"}, {"name": "anything-digital sh404sef", "operator": "eq", "version": "1.5.12.464"}, {"name": "anything-digital sh404sef", "operator": "eq", "version": "2.1.3.680"}, {"name": "anything-digital sh404sef", "operator": "eq", "version": "1.5.5.388"}, {"name": "anything-digital sh404sef", "operator": "eq", "version": "2.1.2.649"}, {"name": "anything-digital sh404sef", "operator": "eq", "version": "1.5.8.432"}, {"name": "anything-digital sh404sef", "operator": "eq", "version": "1.5.4.302"}, {"name": "anything-digital sh404sef", "operator": "le", "version": "2.1.7.761"}, {"name": "anything-digital sh404sef", "operator": "eq", "version": "2.1.5.746"}, {"name": "anything-digital sh404sef", "operator": "eq", "version": "1.5.11.459"}, {"name": "anything-digital sh404sef", "operator": "eq", "version": "2.0.0"}, {"name": "anything-digital sh404sef", "operator": "eq", "version": "1.5.9.434"}, {"name": "anything-digital sh404sef", "operator": "eq", "version": "2.1.6.749"}], "cvss2": {"cvssV2": {"accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 4.3, "confidentialityImpact": "NONE", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:N/I:P/A:N", "version": "2.0"}, "exploitabilityScore": 8.6, "impactScore": 2.9, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "severity": "MEDIUM", "userInteractionRequired": true}, "cvss3": {}, "cpe23": [], "cwe": ["CWE-79"]}
{}
