Description

Multiple cross-site scripting (XSS) vulnerabilities in Joomla! 1.5.7 and earlier allow remote authenticated users with certain privileges to inject arbitrary web script or HTML via (1) the title and description parameters to the com_weblinks module and (2) unspecified vectors in the com_content module related to "article submission."

Remediation

References

CVE-2008-6299

Related Vulnerabilities

WordPress Plugin Essential Addons for Elementor Cross-Site Scripting (5.0.8)

XWiki Exposure of Private Personal Information to an Unauthorized Actor Vulnerability (CVE-2022-24819)

PHP Resource Management Errors Vulnerability (CVE-2014-0237)

Magento Server-Side Request Forgery (SSRF) Vulnerability (CVE-2019-8151)

WordPress Plugin Web Stories Server-Side Request Forgery (1.24.0)

Severity

Low

Classification

CVE-2008-6299 CWE-707

Tags

Missing Update Known Vulnerabilities