Description
The cross-site scripting (XSS) countermeasures in class.inputfilter.php in Joomla! 1.0.7 allow remote attackers to cause a denial of service via a crafted mosmsg parameter to index.php with a malformed sequence of multiple tags, as demonstrated using "<<>AAA<><>", possibly due to nested or empty tags.
Remediation
References
Related Vulnerabilities
Moodle Improper Link Resolution Before File Access ('Link Following') Vulnerability (CVE-2008-5153)
MySQL CVE-2022-21307 Vulnerability (CVE-2022-21307)
Django Improper Certificate Validation Vulnerability (CVE-2020-13254)
WordPress Plugin Wordfence Security-Firewall & Malware Scan Cross-Site Scripting (3.8.1)
Dolibarr Files or Directories Accessible to External Parties Vulnerability (CVE-2023-33568)