4 matches found
Reflected Cross-Site Scripting (XSS) in Simple Email Form Joomla Extension
Advisory ID: HTB23241 Product: Simple Email Form Joomla Extension Vendor: Doug Bierer Vulnerable Versions: 1.8.5 and probably prior Tested Version: 1.8.5 Advisory Publication: October 29, 2014 without technical details Vendor Notification: October 29, 2014 Public Disclosure: November 19, 2014...
CVE-2014-8539
CVE-2014-8539 affects Simple Email Form Joomla Extension (v1.8.5 and likely earlier). The root cause is insufficient sanitization of the mod_simpleemailform_field2_1 POST parameter in /index.php, enabling reflected XSS. Impact is execution of arbitrary HTML/JavaScript in the context of the affect...
Joomla Simple Email Form 1.8.5 Cross Site Scripting Vulnerability
Exploit for php platform in category web applications Product: Simple Email Form Joomla Extension Vendor: Doug Bierer Vulnerable Versions: 1.8.5 and probably prior Tested Version: 1.8.5 Advisory Publication: October 29, 2014 without technical details Vendor Notification: October 29, 2014 Public...
Reflected Cross-Site Scripting (XSS) in Simple Email Form Joomla Extension
High-Tech Bridge Security Research Lab discovered vulnerability in Simple Email Form Joomla Extension, which can be exploited to perform Cross-Site Scripting XSS attacks against visitors and administrators of Joomla websites with installed plugin. 1 Reflected Cross-Site Scripting XSS in Simple...