Description
Multiple cross-site scripting (XSS) vulnerabilities in Joomla! before 1.0.10 allow remote attackers to inject arbitrary web script or HTML via unspecified parameters involving the (1) getUserStateFromRequest function, and the (2) SEF and (3) com_messages modules.
Remediation
References
Related Vulnerabilities
phpMyAdmin Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2016-6612)
WordPress Plugin Page Builder by SiteOrigin Cross-Site Scripting (2.0.4)
Ruby on Rails Improper Input Validation Vulnerability (CVE-2011-3187)
WordPress Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2011-4898)
Oracle Application Server CVE-2006-3711 Vulnerability (CVE-2006-3711)