Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in

Joomla 2.4.0 Gridbox Cross Site Scripting

🗓️ 08 Jun 2018 00:00:00Reported by Yavuz AtlasType 
packetstorm
 packetstorm🔗 packetstormsecurity.com👁 55 Views

Balbooa Gridbox extension version 2.4.0 and earlier for Joomla! is vulnerable to cross-site scripting. A remote attacker could execute script in a victim's web browser via a crafted URL, potentially stealing the victim's authentication credentials

Related
Code
ReporterTitlePublishedViews
Family
CNVD		Balbooa Gridbox Extension Cross-Site Scripting Vulnerability in Joomla!
15 Jun 201800:00
cnvd
CVE		CVE-2018-11690
14 Jun 201820:00
cve
Cvelist		CVE-2018-11690
14 Jun 201820:00
cvelist
EUVD		EUVD-2018-3709
7 Oct 202500:30
euvd
NVD		CVE-2018-11690
14 Jun 201820:29
nvd
OSV		CVE-2018-11690
14 Jun 201820:29
osv
Prion		Cross site scripting
14 Jun 201820:29
prion
`I. VULNERABILITY  
-------------------------  
Gridbox extension for Joomla! <= 2.4.0 Reflected Cross Site Scripting (XSS)  
  
II. CVE REFERENCE  
-------------------------  
CVE-2018-11690  
  
III. VENDOR  
-------------------------  
https://extensions.joomla.org/extension/gridbox/  
  
IV. REFERENCES  
-------------------------  
https://vulmon.com/vulnerabilitydetails?qid=CVE-2018-11690  
https://vel.joomla.org/resolved/2155-gridbox-com-gridbox-multiple-vulnerabilities  
  
V. TIMELINE  
-------------------------  
02/04/2018 Vulnerability discovered  
09/04/2018 Vendor contacted  
23/04/2018 Vulnerability fixed  
  
VI. CREDIT  
-------------------------  
Yavuz Atlas of Biznet Bilisim  
http://www.biznet.com.tr/biznet-guvenlik-duyurulari  
  
VII. DESCRIPTION  
-------------------------  
Balbooa Gridbox extension version 2.4.0 and previous versions for  
Joomla! is vulnerable to cross-site scripting. A remote attacker could  
exploit this vulnerability via a crafted URL to execute script in a  
victim's Web browser within the security context of the hosting Web  
site, once the URL is clicked. An attacker could use this  
vulnerability to steal the victim's cookie-based authentication  
credentials  
  
VIII. PROOF OF CONCEPT  
-------------------------  
For category parameter:  
http://localhost:81/bg/Joomla_3.8.5-Stable-Full_Package/index.php?option=com_gridbox&view=pages&app=aaa&category=<script>alert(1)</script>  
  
For app parameter:  
http://localhost:81/bg/Joomla_3.8.5-Stable-Full_Package/index.php?option=com_gridbox&view=pages&app=<script>alert(1)</script>&category=aaa  
`

Data

Build on a solid foundation with Vulners data

We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data

Api

Power your application with Vulners API

The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access

App

Assess and manage vulnerabilities with Vulners tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation

Book a live demo
08 Jun 2018 00:00Current
6.4Medium risk
Vulners AI Score6.4
EPSS0.05554
gridbox extensionjoomlacross site scriptingvulnerabilityremote attackerauthentication credentials
55