Lucene search

[email protected]CVE-2012-4071

HistoryOct 03, 2022 - 4:15 p.m.

CVE-2012-4071

2022-10-0316:15:35

CWE-79

[email protected]

web.nvd.nist.gov

cve-2012-4071

cross-site scripting

xss

rsgallery2

joomla

nvd

4.3 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

5.9 Medium

AI Score

Confidence

High

0.002 Low

EPSS

Percentile

53.1%

JSON

Cross-site scripting (XSS) vulnerability in the comments module in the RSGallery2 (com_rsgallery2) component before 2.3.0 for Joomla! 1.5.x, and before 3.2.0 for Joomla! 2.5.x, allows remote attackers to inject arbitrary web script or HTML via crafted BBCode markup in a comment.

Affected configurations

NVD

Node

rsgallery2com_rsgallery2Range≤2.2.1

rsgallery2com_rsgallery2Match1.9.0-4alpha

rsgallery2com_rsgallery2Match1.9.4alpha

rsgallery2com_rsgallery2Match1.9.5alpha

rsgallery2com_rsgallery2Match1.10.1alpha

rsgallery2com_rsgallery2Match1.10.2alpha

rsgallery2com_rsgallery2Match1.10.5alpha

rsgallery2com_rsgallery2Match1.10.6alpha

rsgallery2com_rsgallery2Match1.10.7alpha

rsgallery2com_rsgallery2Match1.10.8alpha

rsgallery2com_rsgallery2Match1.10.9alpha

rsgallery2com_rsgallery2Match1.10.10alpha

rsgallery2com_rsgallery2Match1.10.11alpha

rsgallery2com_rsgallery2Match1.10.13alpha

rsgallery2com_rsgallery2Match1.10.14alpha

rsgallery2com_rsgallery2Match1.11.0alpha

rsgallery2com_rsgallery2Match1.11.1alpha

rsgallery2com_rsgallery2Match1.11.2alpha

rsgallery2com_rsgallery2Match1.11.3alpha

rsgallery2com_rsgallery2Match1.11.4alpha

rsgallery2com_rsgallery2Match1.11.5alpha

rsgallery2com_rsgallery2Match1.11.6alpha

rsgallery2com_rsgallery2Match1.11.7alpha

rsgallery2com_rsgallery2Match1.11.8alpha

rsgallery2com_rsgallery2Match1.11.10alpha

rsgallery2com_rsgallery2Match1.11.11alpha

rsgallery2com_rsgallery2Match1.12.0alpha

rsgallery2com_rsgallery2Match1.12.1alpha

rsgallery2com_rsgallery2Match1.12.2alpha

rsgallery2com_rsgallery2Match1.13.0alpha

rsgallery2com_rsgallery2Match1.13.1alpha

rsgallery2com_rsgallery2Match1.14.0alpha

rsgallery2com_rsgallery2Match1.14.1alpha

rsgallery2com_rsgallery2Match2.1.0beta

rsgallery2com_rsgallery2Match2.1.1

rsgallery2com_rsgallery2Match2.2.0

AND

joomlajoomla\!Match1.5.0

joomlajoomla\!Match1.5.1

joomlajoomla\!Match1.5.2

joomlajoomla\!Match1.5.3

joomlajoomla\!Match1.5.4

joomlajoomla\!Match1.5.5

joomlajoomla\!Match1.5.6

joomlajoomla\!Match1.5.7

joomlajoomla\!Match1.5.8

joomlajoomla\!Match1.5.9

joomlajoomla\!Match1.5.10

joomlajoomla\!Match1.5.11

joomlajoomla\!Match1.5.12

joomlajoomla\!Match1.5.13

joomlajoomla\!Match1.5.14

joomlajoomla\!Match1.5.15

joomlajoomla\!Match1.5.15rc

joomlajoomla\!Match1.5.16

joomlajoomla\!Match1.5.17

joomlajoomla\!Match1.5.18

joomlajoomla\!Match1.5.19

joomlajoomla\!Match1.5.20

joomlajoomla\!Match1.5.21

joomlajoomla\!Match1.5.22

joomlajoomla\!Match1.5.23

joomlajoomla\!Match1.5.24

joomlajoomla\!Match1.5.25

joomlajoomla\!Match1.5.26

Node

rsgallery2com_rsgallery2Range≤3.1.0

rsgallery2com_rsgallery2Match1.9.0-4alpha

rsgallery2com_rsgallery2Match1.9.4alpha

rsgallery2com_rsgallery2Match1.9.5alpha

rsgallery2com_rsgallery2Match1.10.1alpha

rsgallery2com_rsgallery2Match1.10.2alpha

rsgallery2com_rsgallery2Match1.10.5alpha

rsgallery2com_rsgallery2Match1.10.6alpha

rsgallery2com_rsgallery2Match1.10.7alpha

rsgallery2com_rsgallery2Match1.10.8alpha

rsgallery2com_rsgallery2Match1.10.9alpha

rsgallery2com_rsgallery2Match1.10.10alpha

rsgallery2com_rsgallery2Match1.10.11alpha

rsgallery2com_rsgallery2Match1.10.13alpha

rsgallery2com_rsgallery2Match1.10.14alpha

rsgallery2com_rsgallery2Match1.11.0alpha

rsgallery2com_rsgallery2Match1.11.1alpha

rsgallery2com_rsgallery2Match1.11.2alpha

rsgallery2com_rsgallery2Match1.11.3alpha

rsgallery2com_rsgallery2Match1.11.4alpha

rsgallery2com_rsgallery2Match1.11.5alpha

rsgallery2com_rsgallery2Match1.11.6alpha

rsgallery2com_rsgallery2Match1.11.7alpha

rsgallery2com_rsgallery2Match1.11.8alpha

rsgallery2com_rsgallery2Match1.11.10alpha

rsgallery2com_rsgallery2Match1.11.11alpha

rsgallery2com_rsgallery2Match1.12.0alpha

rsgallery2com_rsgallery2Match1.12.1alpha

rsgallery2com_rsgallery2Match1.12.2alpha

rsgallery2com_rsgallery2Match1.13.0alpha

rsgallery2com_rsgallery2Match1.13.1alpha

rsgallery2com_rsgallery2Match1.14.0alpha

rsgallery2com_rsgallery2Match1.14.1alpha

rsgallery2com_rsgallery2Match2.1.0beta

rsgallery2com_rsgallery2Match2.1.1

rsgallery2com_rsgallery2Match3.0rc1

rsgallery2com_rsgallery2Match3.0.1

AND

joomlajoomla\!Match2.5.0

joomlajoomla\!Match2.5.1

joomlajoomla\!Match2.5.2

joomlajoomla\!Match2.5.3

joomlajoomla\!Match2.5.4

joomlajoomla\!Match2.5.5

joomlajoomla\!Match2.5.6

CPENameOperatorVersion
rsgallery2:com_rsgallery2rsgallery2 com rsgallery2le2.2.1
rsgallery2:com_rsgallery2rsgallery2 com rsgallery2eq1.9.0-4
rsgallery2:com_rsgallery2rsgallery2 com rsgallery2eq1.9.4
rsgallery2:com_rsgallery2rsgallery2 com rsgallery2eq1.9.5
rsgallery2:com_rsgallery2rsgallery2 com rsgallery2eq1.10.1
rsgallery2:com_rsgallery2rsgallery2 com rsgallery2eq1.10.2
rsgallery2:com_rsgallery2rsgallery2 com rsgallery2eq1.10.5
rsgallery2:com_rsgallery2rsgallery2 com rsgallery2eq1.10.6
rsgallery2:com_rsgallery2rsgallery2 com rsgallery2eq1.10.7
rsgallery2:com_rsgallery2rsgallery2 com rsgallery2eq1.10.8

CPE	Name	Operator	Version
rsgallery2:com_rsgallery2	rsgallery2 com rsgallery2	le	2.2.1
rsgallery2:com_rsgallery2	rsgallery2 com rsgallery2	eq	1.9.0-4
rsgallery2:com_rsgallery2	rsgallery2 com rsgallery2	eq	1.9.4
rsgallery2:com_rsgallery2	rsgallery2 com rsgallery2	eq	1.9.5
rsgallery2:com_rsgallery2	rsgallery2 com rsgallery2	eq	1.10.1
rsgallery2:com_rsgallery2	rsgallery2 com rsgallery2	eq	1.10.2
rsgallery2:com_rsgallery2	rsgallery2 com rsgallery2	eq	1.10.5
rsgallery2:com_rsgallery2	rsgallery2 com rsgallery2	eq	1.10.6
rsgallery2:com_rsgallery2	rsgallery2 com rsgallery2	eq	1.10.7
rsgallery2:com_rsgallery2	rsgallery2 com rsgallery2	eq	1.10.8

Rows per page:

1-10 of 361

References

extensions.joomla.org/extensions/photos-a-images/photo-gallery/142

joomlacode.org/gf/download/frsrelease/17325/75427/com_rsgallery2_2.3.0.zip

joomlacode.org/gf/download/frsrelease/17326/75428/com_rsgallery2_3.2.0.zip

joomlacode.org/gf/project/rsgallery2/news/

www.rsgallery2.nl/announcements/rsgallery2_3.2.0_and_2.3.0_released_16845.0.html

4.3 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

5.9 Medium

AI Score

Confidence

High

0.002 Low

EPSS

Percentile

53.1%

JSON

Related for CVE-2012-4071

prion1 cvelist1 nvd1