Lucene search
K

5 matches found

Tenable Nessus
Tenable Nessus
added 2019/09/26 12:0 a.m.18 views

Joomla! 3.0.x < 3.9.12 Cross-Site Scripting

According to its self-reported version number, the detected Joomla! application is affected by a cross-site scripting vulnerability in versions 3.0.0 to 3.9.11 due to inadequate escaping in the logo parameter of the default templates. Note that the scanner has not tested for these issues but has...

6.1CVSS6.6AI score0.00671EPSS
Exploits0References3
Prion
Prion
added 2013/05/03 11:57 a.m.21 views

Design/Logic Flaw

plugins/system/remember/remember.php in Joomla! 2.5.x before 2.5.10 and 3.0.x before 3.0.4 does not properly handle an object obtained by unserializing a cookie, which allows remote authenticated users to conduct PHP object injection attacks and cause a denial of service via unspecified vectors...

5.5CVSS6.9AI score0.04848EPSS
Exploits6References4Affected Software1
Cvelist
Cvelist
added 2013/05/03 10:0 a.m.18 views

CVE-2013-3267

Cross-site scripting XSS vulnerability in the highlighter plugin in Joomla! 2.5.x before 2.5.10 and 3.0.x before 3.0.4 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors...

5.6AI score0.01366EPSS
Exploits0References1
CVE
CVE
added 2013/05/03 10:0 a.m.68 views

CVE-2013-3267

CVE-2013-3267 is an XSS vulnerability in the Joomla! Highlighter plugin affecting Joomla! 2.5.x before 2.5.10 and 3.0.x before 3.0.4. The issue is triggered by improper validation of user-supplied input, allowing remote attackers to inject arbitrary script/HTML via unspecified vectors. Impact det...

4.3CVSS5.8AI score0.01366EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2013/05/03 10:0 a.m.21 views

CVE-2013-3059

Cross-site scripting XSS vulnerability in the Voting plugin in Joomla! 2.5.x before 2.5.10 and 3.0.x before 3.0.4 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors...

5.6AI score0.01366EPSS
Exploits0References1
Rows per page
Query Builder