CVE-2009-4579

2010-01-0621:33:00

mitre

www.cve.org

AI Score

5.8

Confidence

High

EPSS

0.004

Percentile

72.1%

JSON

Cross-site scripting (XSS) vulnerability in the Artist avenue (com_artistavenue) component for Joomla! and Mambo allows remote attackers to inject arbitrary web script or HTML via the Itemid parameter to index.php.

References

packetstormsecurity.org/0912-exploits/joomlaartistavenue-xss.txt

www.exploit-db.com/exploits/10818

www.securityfocus.com/bid/37537

exchange.xforce.ibmcloud.com/vulnerabilities/55214