Joomla!.Core.create-a-post.XSS
Description
This indicates an attack attempt against a Cross-Site Scripting (XSS) vulnerability in Joomla! CMS.
The vulnerability is due to inadequate filtering of multi-byte characters which leads to XSS vulnerabilities in various components. A remote attacker may be able to exploit this to execute arbitrary script code within the context of the application, via a crafted request.
Affected Products
Joomla! CMS versions 1.5.0 through 3.7.2
Impact
System Compromise : Remote attackers can execute arbitrary script code within the context of the target user's browser
Recommended Actions
Upgrade to Joomla! CMS version 3.7.3
https://downloads.joomla.org/
Telemetry
Coverage
IPS (Regular DB) | |
IPS (Extended DB) |
Version Updates
Date | Version | Detail |
---|---|---|
2019-06-10 | 14.629 | Severity:high:medium |