Summary
This host is running Joomla and is prone to multiple cross-site scripting vulnerabilities.
Impact
Successful exploitation will let attackers to execute arbitrary script code in the browser of an unsuspecting user in the context of the affected site.
Impact Level: Application.
Solution
Upgrade Joomla! version to 1.6.1 or later.
For updates refer to http://www.joomla.org
Insight
The flaw is caused by an input validation error in the Query String Parameter in 'index.php' when processing user-supplied data, which could be exploited by attackers to cause arbitrary scripting code to be executed by the user's browser in the security context of an affected site.
Affected
Joomla! version 1.6.0
References
Severity
Classification
-
CVSS Base Score: 4.3
AV:N/AC:M/Au:N/C:N/I:P/A:N
Related Vulnerabilities
- Apache Tomcat HTTP BIO Connector Information Disclosure Vulnerability
- An Image Gallery Multiple Cross-Site Scripting Vulnerability
- aeNovo Database Content Disclosure Vulnerability
- 1024 CMS 1.1.0 Beta 'force_download.php' Local File Include Vulnerability
- Aardvark Topsites PHP 'index.php' Multiple Cross Site Scripting Vulnerabilities