Description

Multiple cross-site scripting (XSS) vulnerabilities in Joomla! before 1.0.4 allow remote attackers to inject arbitrary web script or HTML via (1) "GET and other variables" and (2) "SEF".

Remediation

References

CVE-2005-3771

Related Vulnerabilities

Joomla! Core 3.3.x Denial of Service (3.3.0 - 3.3.4)

WordPress Plugin MC4WP:Mailchimp for WordPress Cross-Site Scripting (4.1.6)

WordPress Plugin Retain Live Chat Cross-Site Scripting (0.1)

WordPress Plugin Customer Service Software & Support Ticket System Cross-Site Scripting (5.10.3)

YetiForce CRM Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2022-2885)

Severity

Medium

Classification

CVE-2005-3771

Tags

Missing Update Known Vulnerabilities