3 matches found
CVE-2010-5048
Cross-site scripting XSS vulnerability in admin.jcomments.php in the JoomlaTune JComments comjcomments component 2.1.0.0 for Joomla! allows remote authenticated users to inject arbitrary web script or HTML via the name parameter to index.php...
CVE-2010-5048
Cross-site scripting XSS vulnerability in admin.jcomments.php in the JoomlaTune JComments comjcomments component 2.1.0.0 for Joomla! allows remote authenticated users to inject arbitrary web script or HTML via the name parameter to index.php...
CVE-2010-5048
CVE-2010-5048 concerns a persistent XSS in Joomla! JComments (com_jcomments) admin.jcomments.php v2.1.0.0. The flaw arises from insufficient input sanitization in the POST field named “name,” allowing remote authenticated users to inject arbitrary HTML/JS. The vulnerability affects the JComments ...