EUVD-2015-6872

🗓️ 07 Oct 2025 00:30:54Reported by EUVDType

Cross-site scripting vulnerability in Joomla! 3.4.x allows remote attackers to inject scripts.

Reporter	Title	Published	Views	Family All 12
0day.today	Joomla! CMS 3.4.3 Cross Site Scripting Vulnerability	9 Oct 201500:00	–	zdt
CNVD	Cross-Site Scripting Vulnerability in Joomla!	22 Sep 201500:00	–	cnvd
CVE	CVE-2015-6939	18 Sep 201516:00	–	cve
Cvelist	CVE-2015-6939	18 Sep 201516:00	–	cvelist
FreeBSD	Joomla! -- Core - XSS Vulnerability	8 Sep 201500:00	–	freebsd
Tenable Nessus	FreeBSD : Joomla! -- Core - XSS Vulnerability (f8c37915-7ac5-11e5-b35a-002590263bf5)	26 Oct 201500:00	–	nessus
Tenable Nessus	Joomla! 3.4.x < 3.4.4 Login Module XSS	18 Sep 201500:00	–	nessus
Joomla! Vulnerable Extensions List	[20150908] - Core - XSS Vulnerability	18 Aug 201500:00	–	joomla
NVD	CVE-2015-6939	18 Sep 201516:59	–	nvd
OpenVAS	Joomla CMS 'login' Module XSS Vulnerability	19 Oct 201500:00	–	openvas

[
  {
    "enisaIdVendor": [
      {
        "id": "8fe53398-11e8-39e4-ab75-89f7a179e497",
        "vendor": {
          "name": "n/a"
        }
      }
    ],
    "enisaIdProduct": [
      {
        "id": "acecffdc-4e89-3cbe-a98c-53d03bfd84ad",
        "product": {
          "name": "n/a"
        },
        "product_version": "n/a"
      }
    ]
  }
]

Source	Link
packetstormsecurity	www.packetstormsecurity.com/files/cve/CVE-2015-6939
securitytracker	www.securitytracker.com/id/1033541
developer	www.developer.joomla.org/security-centre/626-20150908-core-xss-vulnerability.html
packetstormsecurity	www.packetstormsecurity.com/files/133907/Joomla-CMS-3.4.3-Cross-Site-Scripting.html
github	www.github.com/advisories/GHSA-293c-r3p4-g63r

07 Oct 2025 00:30Current

6.1Medium risk

Vulners AI Score6.1

CVSS 24.3

EPSS0.00053