2 matches found
CVE-2014-9103
Multiple cross-site scripting XSS vulnerabilities in the Kunena component before 3.0.6 for Joomla! allow remote attackers to inject arbitrary web script or HTML via the 1 index value of an array parameter or the filename parameter in the Content-Disposition header to the 2 file or 3 profile image...
CVE-2014-9103
Kunena for Joomla! is affected by CVE-2014-9103: multiple XSS vulnerabilities present in Kunena before version 3.0.6. An attacker can inject arbitrary script/HTML via the index value of an array parameter or the filename parameter in the Content-Disposition header to the file or profile image upl...