Description

Cross-site scripting (XSS) vulnerability in the update manager in Joomla! 2.5.x before 2.5.4 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.

Remediation

References

CVE-2012-1612

Related Vulnerabilities

WordPress Plugin JS Support Ticket Unspecified Vulnerability (1.1.1)

WordPress Plugin Responsive Slider-Image Slider-Slideshow for WordPress SQL Injection (2.6.8)

OpenSSL Other Vulnerability (CVE-2015-0288)

MongoDb Improper Input Validation Vulnerability (CVE-2015-1609)

WebLogic CVE-2010-4453 Vulnerability (CVE-2010-4453)

Severity

Medium

Classification

CVE-2012-1612 CWE-707

Tags

Missing Update Known Vulnerabilities