Description

Cross-site scripting (XSS) vulnerability in Joomla! 2.5.x before 2.5.10 and 3.0.x before 3.0.4 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.

Remediation

References

CVE-2013-3058

Related Vulnerabilities

WordPress Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2018-10102)

WordPress Plugin WP Custom Admin Interface PHP Object Injection (7.28)

MediaWiki Allocation of Resources Without Limits or Throttling Vulnerability (CVE-2022-34750)

WordPress Plugin Inline Tweet Sharer-Twitter Sharing Cross-Site Scripting (2.5.3)

WordPress Plugin Store Locator Plus for WordPress SQL Injection (3.8.6)

Severity

Medium

Classification

CVE-2013-3058 CWE-707

Tags

Missing Update Known Vulnerabilities