Описание
Cross-site scripting (XSS) vulnerability in the com_search module for Joomla! 1.0.x through 1.0.15 allows remote attackers to inject arbitrary web script or HTML via the ordering parameter to index.php.
Cross-site scripting (XSS) vulnerability in the com_search module for Joomla! 1.0.x through 1.0.15 allows remote attackers to inject arbitrary web script or HTML via the ordering parameter to index.php.
Ссылки
- https://nvd.nist.gov/vuln/detail/CVE-2011-0005
- https://exchange.xforce.ibmcloud.com/vulnerabilities/64539
- http://osvdb.org/70369
- http://packetstormsecurity.org/files/view/97273/joomla1015-xss.txt
- http://www.securityfocus.com/archive/1/515553/100/0/threaded
- http://www.securityfocus.com/archive/1/515590/100/0/threaded
- http://www.securityfocus.com/bid/45679
- http://yehg.net/lab/pr0js/advisories/joomla/core/%5Bjoomla_1.0.x~15%5D_cross_site_scripting
- http://yehg.net/lab/pr0js/advisories/joomla/core/[joomla_1.0.x~15]_cross_site_scripting
Связанные уязвимости
nvd
около 15 лет назад
Cross-site scripting (XSS) vulnerability in the com_search module for Joomla! 1.0.x through 1.0.15 allows remote attackers to inject arbitrary web script or HTML via the ordering parameter to index.php.