Description

Cross-site scripting (XSS) vulnerability in the login module in Joomla! 3.4.x before 3.4.4 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.

Remediation

References

CVE-2015-6939

Related Vulnerabilities

XWiki Missing Authorization Vulnerability (CVE-2022-36091)

Magento Improper Authentication Vulnerability (CVE-2015-3457)

WordPress Plugin GEO Redirector Cross-Site Scripting (1.0.1)

WordPress 4.6.x Multiple Vulnerabilities (4.6 - 4.6.18)

WordPress Plugin Multiple Domain Cross-Site Scripting (1.0.2)

Severity

Medium

Classification

CVE-2015-6939 CWE-707

Tags

Missing Update Known Vulnerabilities