CVE-2009-1938
Joomla! 1.5-1.5.10 - Cross-Site Scripting via Database Output
Title source: llmExploitation Summary
EIP tracks 1 public exploit for CVE-2009-1938. PoCs published by Airton Torres.
AI-analyzed exploit summary This exploit demonstrates multiple XSS vulnerabilities in Joomla! versions prior to 1.5.11. The PoC includes URLs with injected JavaScript payloads targeting various parameters in the 'com_user' component and 'JA_Purity' template.
Description
Cross-site scripting (XSS) vulnerability in Joomla! 1.5.x through 1.5.10 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors related to database output and the frontend administrative panel.
Exploits (1)
This exploit demonstrates multiple XSS vulnerabilities in Joomla! versions prior to 1.5.11. The PoC includes URLs with injected JavaScript payloads targeting various parameters in the 'com_user' component and 'JA_Purity' template.