virus logo Intrusion Prevention

Joomla!.Huge-IT.Image.Gallery.Extension.XSS

description-logoDescription

This indicates an attack attempt against a Cross Site Scripting vulnerability in Joomla Huge-IT Image Gallery Extension.
The vulnerability is due to insufficient validation of user supplied data in the application. A remote attacker can exploit this by tricking an unsuspecting user into visiting a malicious webpage and execute arbitrary script code within context of the target users' browser.

affected-products-logoAffected Products

Joomla Huge-IT Image Gallery Extension v1.1.5 and earlier

Impact logoImpact

System Compromise: Remote attackers can execute arbitrary script code within the context of the target user's browser

recomended-action-logoRecommended Actions

Apply the most recent upgrade or patch from the vendor.
http://extensions.joomla.org/extensions/extension/photos-a-images/galleries/gallery-pro

Telemetry logoTelemetry

Coverage

IPS (Regular DB)
IPS (Extended DB)

Version Updates

Date Version Detail
2019-02-01 14.540 Name:Joomla.
Huge-IT.
Image.
Gallery.
Extension.
XSS:Joomla!.
Huge-IT.
Image.
Gallery.
Extension.
XSS
ID 42790
Created Aug 03, 2016
Updated May 02, 2022
Risk black-background-circle-icon black-background-circle-icon black-background-circle-icon black-background-circle-icon black-background-circle-icon
CVE ID CVE-2016-1000113
Exploit Prediction Score 1.26%
Default Action drop
Active
Affected OS Windows, Linux, BSD, Solaris, MacOS
Affected App PHP_app