EUVD-2009-4539

Malware in sbrugna...

EUVD-2009-4138

Malware in sbrugna...

Joomla! Joomulus Component 2.0 'tagcloud.swf' Cross-Site Scripting Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/37479/info The Joomulus component for Joomla! is prone to a cross-site scripting vulnerability because the application fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitra...

Cross-Site Scripting vulnerability in JVClouds3D for Joomla

Hello Bugtraq! I want to warn you about Cross-Site Scripting vulnerability in JVClouds3D modjvclouds3D plugin for Joomla. Which I found at 08.01.2010. It is similar to XSS vulnerability in Joomulus for Joomla http://websecurity.com.ua/3801/. About millions of flash files tagcloud.swf which are...

CVE-2009-4573

Multiple cross-site scripting XSS vulnerabilities in the Joomulus modjoomulus module 2.0 for Joomla! allow remote attackers to inject arbitrary web script or HTML via the tagcloud parameter in a tags action to 1 tagcloudell.swf, 2 tagcloudeng.swf, 3 tagcloudpor.swf, 4 tagcloudrus.swf, and possibl...

Cross site scripting

Multiple cross-site scripting XSS vulnerabilities in the Joomulus modjoomulus module 2.0 for Joomla! allow remote attackers to inject arbitrary web script or HTML via the tagcloud parameter in a tags action to 1 tagcloudell.swf, 2 tagcloudeng.swf, 3 tagcloudpor.swf, 4 tagcloudrus.swf, and possibl...

CVE-2009-4573

Multiple cross-site scripting XSS vulnerabilities in the Joomulus modjoomulus module 2.0 for Joomla! allow remote attackers to inject arbitrary web script or HTML via the tagcloud parameter in a tags action to 1 tagcloudell.swf, 2 tagcloudeng.swf, 3 tagcloudpor.swf, 4 tagcloudrus.swf, and possibl...

CVE-2009-4573

CVE-2009-4573: Multiple XSS vulnerabilities in the Joomulus (mod_joomulus) 2.0 module for Joomla! allow remote attackers to inject arbitrary script/HTML via the tagcloud parameter in a tags action (affecting tagcloud_ell.swf, tagcloud_eng.swf, tagcloud_por.swf, tagcloud_rus.swf, and possibly tagc...

Joomulus Cross Site Scripting

Hello Bugtraq! I want to warn you about Cross-Site Scripting vulnerability in Joomulus modjoomulus plugin for Joomla. Which I found at 23.12.2009. It is similar to XSS vulnerability in WP-Cumulus http://websecurity.com.ua/3665/, because it's using tagcloud.swf made by author of WP-Cumulus. About...

Vulnerability in Joomulus for Joomla

Hello Bugtraq! I want to warn you about Cross-Site Scripting vulnerability in Joomulus modjoomulus plugin for Joomla. Which I found at 23.12.2009. It is similar to XSS vulnerability in WP-Cumulus http://websecurity.com.ua/3665/, because it's using tagcloud.swf made by author of WP-Cumulus. About...

Joomla! Component Joomulus 2.0 - 'tagcloud.swf' Cross-Site Scripting

source: https://www.securityfocus.com/bid/37479/info The Joomulus component for Joomla! is prone to a cross-site scripting vulnerability because the application fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of a...

Joomla! Component Joomulus 2.0 - tagcloud.swf Cross-Site Scripting

Joomla! Component Joomulus 2.0 - tagcloud.swf Cross-Site Scripting source: https://www.securityfocus.com/bid/37479/info The Joomulus component for Joomla! is prone to a cross-site scripting vulnerability because the application fails to properly sanitize user-supplied input. An attacker may...

CVE-2009-4168

Cross-site scripting XSS vulnerability in Roy Tanck tagcloud.swf, as used in the WP-Cumulus plugin before 1.23 for WordPress and the Joomulus module 2.0 and earlier for Joomla!, allows remote attackers to inject arbitrary web script or HTML via the tagcloud parameter in a tags action. Cross-site...

Cross site scripting

Cross-site scripting XSS vulnerability in Roy Tanck tagcloud.swf, as used in the WP-Cumulus plugin before 1.23 for WordPress and the Joomulus module 2.0 and earlier for Joomla!, allows remote attackers to inject arbitrary web script or HTML via the tagcloud parameter in a tags action. Cross-site...

CVE-2009-4168

CVE-2009-4168 is an XSS in Roy Tanck tagcloud.swf used by WP-Cumulus plugin (WordPress) and Joomulus module; tagcloud parameter in a tags action enables remote script/HTML injection. Affected: WP-Cumulus before 1.23 and Joomulus 2.0 and earlier. Root cause: tagcloud.swf parameter handling allows ...

CVE-2009-4168

Cross-site scripting XSS vulnerability in Roy Tanck tagcloud.swf, as used in the WP-Cumulus plugin before 1.23 for WordPress and the Joomulus module 2.0 and earlier for Joomla!, allows remote attackers to inject arbitrary web script or HTML via the tagcloud parameter in a tags action. Cross-site...