Description

Cross-site scripting (XSS) vulnerability in the highlighter plugin in Joomla! 2.5.x before 2.5.10 and 3.0.x before 3.0.4 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.

Remediation

References

CVE-2013-3267

Related Vulnerabilities

MySQL CVE-2020-14771 Vulnerability (CVE-2020-14771)

WordPress Plugin WP FullCalendar Security Bypass (1.4.1)

TinyMCE Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2020-17480)

Drupal Other Vulnerability (CVE-2006-1227)

WordPress Plugin Weather Effect-Christmas Santa Snow Falling Cross-Site Request Forgery (1.3.3)

Severity

Medium

Classification

CVE-2013-3267 CWE-707

Tags

Missing Update Known Vulnerabilities