Description

Multiple cross-site scripting (XSS) vulnerabilities in Joomla! before 1.0.11 allow remote attackers to inject arbitrary web script or HTML via unspecified parameters in (1) Admin Module Manager, (2) Admin Help, and (3) Search.

Remediation

References

CVE-2006-4474

Related Vulnerabilities

IBM RTC Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2016-0331)

Serendipity Other Vulnerability (CVE-2005-1452)

WordPress Plugin Essential Blocks-Page Builder Gutenberg Blocks, Patterns & Templates Multiple PHP Object Injection Vulnerabilities (4.2.0)

Joomla Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2020-10242)

SharePoint Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2020-1103)

Severity

Medium

Classification

CVE-2006-4474

Tags

Missing Update Known Vulnerabilities