CVE-2011-2710

🗓️ 27 Jul 2011 20:00:00Reported by redhatType

cve

cve🔗 web.nvd.nist.gov👁 88 Views🌐 WEB

CVE-2011-2710 Cross-site scripting in Joomla! before 1.7.

Reporter	Title	Published	Views	Family All 7
Check Point Advisories	Joomla index.php Multiple Parameter XSS - Ver2 (CVE-2011-2710)	26 Mar 201500:00	–	checkpoint_advisories
Cvelist	CVE-2011-2710	27 Jul 201120:00	–	cvelist
EUVD	EUVD-2011-2691	7 Oct 202500:30	–	euvd
NVD	CVE-2011-2710	27 Jul 201120:55	–	nvd
OpenVAS	Joomla! CMS Multiple XSS Vulnerabilities (Jul 2011)	27 Jul 201100:00	–	openvas
OpenVAS	Joomla! CMS Multiple Cross Site Scripting Vulnerabilities - July 2011	27 Jul 201100:00	–	openvas
Prion	Cross site scripting	27 Jul 201120:55	–	prion

NVD

Node

joomla joomla!Range≤1.6.6

OR

joomla joomla!Match1.5.0

OR

joomla joomla!Match1.5.1

OR

joomla joomla!Match1.5.2

OR

joomla joomla!Match1.5.3

OR

joomla joomla!Match1.5.4

OR

joomla joomla!Match1.5.5

OR

joomla joomla!Match1.5.6

OR

joomla joomla!Match1.5.7

OR

joomla joomla!Match1.5.8

OR

joomla joomla!Match1.5.9

OR

joomla joomla!Match1.5.10

OR

joomla joomla!Match1.5.11

OR

joomla joomla!Match1.5.12

OR

joomla joomla!Match1.5.13

OR

joomla joomla!Match1.5.14

OR

joomla joomla!Match1.5.15

OR

joomla joomla!Match1.5.15rc

OR

joomla joomla!Match1.5.16

OR

joomla joomla!Match1.5.17

OR

joomla joomla!Match1.5.18

OR

joomla joomla!Match1.5.19

OR

joomla joomla!Match1.5.20

OR

joomla joomla!Match1.5.21

OR

joomla joomla!Match1.5.22

OR

joomla joomla!Match1.5.23

OR

joomla joomla!Match1.6alpha

OR

joomla joomla!Match1.6alpha2

OR

joomla joomla!Match1.6beta1

OR

joomla joomla!Match1.6beta10

OR

joomla joomla!Match1.6beta11

OR

joomla joomla!Match1.6beta12

OR

joomla joomla!Match1.6beta13

OR

joomla joomla!Match1.6beta14

OR

joomla joomla!Match1.6beta15

OR

joomla joomla!Match1.6beta2

OR

joomla joomla!Match1.6beta3

OR

joomla joomla!Match1.6beta4

OR

joomla joomla!Match1.6beta5

OR

joomla joomla!Match1.6beta6

OR

joomla joomla!Match1.6beta7

OR

joomla joomla!Match1.6beta8

OR

joomla joomla!Match1.6beta9

OR

joomla joomla!Match1.6rc1

OR

joomla joomla!Match1.6.0

OR

joomla joomla!Match1.6.1

OR

joomla joomla!Match1.6.3

OR

joomla joomla!Match1.6.4

OR

joomla joomla!Match1.6.5

Source	Link
developer	www.developer.joomla.org/security/news/357-20110701-xss-vulnerability.html
openwall	www.openwall.com/lists/oss-security/2011/10/16/1
openwall	www.openwall.com/lists/oss-security/2011/07/22/5
yehg	www.yehg.net/lab/pr0js/advisories/joomla/core/%5Bjoomla_1.7.0-rc%5D_cross_site_scripting%28XSS%29
openwall	www.openwall.com/lists/oss-security/2011/07/22/1
openwall	www.openwall.com/lists/oss-security/2011/11/21/27

Parameter	Position	Path	Description	CWE
path	path	index.php/includes/application.php	Reflected XSS via URI path to includes/application.php reachable through index.php	CWE-79
searchword	query param	index.php	XSS via searchword parameter in the search action to index.php in the com_search component	CWE-79

29 Apr 2026 01:13Current

5.7Medium risk

Vulners AI Score5.7

CVSS 24.3

EPSS0.00045

cve-2011-2710 cross-site scripting joomla!security vulnerability remote attack web script injection html injection nvd