CVE-2011-0005
Joomla com_search 1.0.x-1.0.15 - Cross-Site Scripting via Ordering Parameter
Title source: llmExploitation Summary
EIP tracks 1 public exploit for CVE-2011-0005. PoCs published by Aung Khant.
AI-analyzed exploit summary This exploit demonstrates a cross-site scripting (XSS) vulnerability in the Joomla! Search component by injecting malicious JavaScript into the URL parameters. The payload triggers an alert with the user's cookies when the mouse moves over the affected page.
Description
Cross-site scripting (XSS) vulnerability in the com_search module for Joomla! 1.0.x through 1.0.15 allows remote attackers to inject arbitrary web script or HTML via the ordering parameter to index.php.
Exploits (1)
This exploit demonstrates a cross-site scripting (XSS) vulnerability in the Joomla! Search component by injecting malicious JavaScript into the URL parameters. The payload triggers an alert with the user's cookies when the mouse moves over the affected page.