CVE-2011-4332

Joomla! < 1.6.3 - Cross-Site Scripting

Title source: llm
STIX 2.1

Description

Multiple cross-site scripting (XSS) vulnerabilities in Joomla! 1.6.3 and earlier allow remote attackers to inject arbitrary web script or HTML via unspecified vectors.

References (4)

Core 4
Core References
Mailing List mailing-list x_refsource_fulldisc
http://seclists.org/fulldisclosure/2011/Nov/142
Mailing List mailing-list x_refsource_mlist
http://www.openwall.com/lists/oss-security/2011/11/21/29

Scores

EPSS 0.0003
EPSS Percentile 8.2%

Details

CWE
CWE-79
Status published
Products (8)
joomla/joomla-cms 0 - 1.6.4Packagist
joomla/joomla\! 1.6 alpha (18 CPE variants)
joomla/joomla\! 1.6.0
joomla/joomla\! 1.6.1
joomla/joomla\! 1.6.4
joomla/joomla\! 1.6.5
joomla/joomla\! 1.6.6
joomla/joomla\! < 1.6.3
Published Nov 23, 2011
Tracked Since Feb 18, 2026