Description
Cross-site scripting (XSS) vulnerability in Joomla! before 1.5.12 allows remote attackers to inject arbitrary web script or HTML via the PATH_INFO.
Remediation
References
Related Vulnerabilities
WordPress Plugin McAvoy Cross-Site Scripting (0.1.0)
Oracle Database Server Other Vulnerability (CVE-2005-3438)
Drupal Configuration Vulnerability (CVE-2008-6171)
Drupal Permissions, Privileges, and Access Controls Vulnerability (CVE-2012-2153)
ZenCart Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2017-11675)