CVE-2010-2535
published 2010-10-05CVE-2010-2535: Multiple cross-site scripting (XSS) vulnerabilities in the Back End in Joomla! 1.5.x before 1.5.20 allow remote authenticated users to inject arbitrary web…
PriorityP411low3.5CVSS 2.0
AVNACMAuSCNIPAN
EPSS
0.86%
54.0th percentile
Multiple cross-site scripting (XSS) vulnerabilities in the Back End in Joomla! 1.5.x before 1.5.20 allow remote authenticated users to inject arbitrary web script or HTML via administrator screens.
Affected
20 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| joomla | joomla_! | — | — |
| joomla | joomla_! | — | — |
| joomla | joomla_! | — | — |
| joomla | joomla_! | — | — |
| joomla | joomla_! | — | — |
| joomla | joomla_! | — | — |
| joomla | joomla_! | — | — |
| joomla | joomla_! | — | — |
| joomla | joomla_! | — | — |
| joomla | joomla_! | — | — |
| joomla | joomla_! | — | — |
| joomla | joomla_! | — | — |
| joomla | joomla_! | — | — |
| joomla | joomla_! | — | — |
| joomla | joomla_! | — | — |
| joomla | joomla_! | — | — |
| joomla | joomla_! | — | — |
| joomla | joomla_! | — | — |
| joomla | joomla_! | — | — |
| joomla | joomla_! | — | — |
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
No detection rules found.
No writeups or analysis indexed.
http://developer.joomla.org/security/news/318-20100704-core-xss-vulnerabilitis-in-back-end.htmlhttp://www.ocert.org/advisories/ocert-2010-002.htmlhttp://www.openwall.com/lists/oss-security/2010/07/20/2http://www.openwall.com/lists/oss-security/2010/07/21/8http://developer.joomla.org/security/news/318-20100704-core-xss-vulnerabilitis-in-back-end.htmlhttp://www.ocert.org/advisories/ocert-2010-002.htmlhttp://www.openwall.com/lists/oss-security/2010/07/20/2http://www.openwall.com/lists/oss-security/2010/07/21/8
2010-10-05
Published