3 matches found
Exploit for Cross-site Scripting in Kunena
CVE-2019-15120 Exploit for XSS via BBCode on Kunena extension...
CVE-2019-15120
The Kunena extension before 5.1.14 for Joomla! allows XSS via BBCode...
CVE-2019-15120
The CVE covers Kunena (Joomla! extension) prior to version 5.1.14. The issue is a stored XSS via BBCode in Kunena messages which is exploitable by normal user input in any BBCode-enabled field. Exploit documentation notes that this XSS can lead to remote code execution. Affected product/version: ...