Description
Cross-site scripting (XSS) vulnerability in the administrator panel in the com_users core component for Joomla! 1.5.x through 1.5.10 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
Remediation
References
Related Vulnerabilities
WordPress Plugin Flight Search Widget and Blocks Cross-Site Scripting (1.1.0)
Drupal Improper Authentication Vulnerability (CVE-2010-3686)
Oracle Application Server Other Vulnerability (CVE-2007-2119)
Joomla! Core 1.5.x Information Disclosure (1.5.0 - 1.5.25)
WordPress Plugin Change WordPress Login Logo Cross-Site Scripting (1.1.4)