Detections
Analytics
Joomla! 2.5.x < 2.5.16 / 3.x < 3.1.6 Multiple XSS
medium Nessus Plugin ID 70918
Language:
Synopsis
The remote web server contains a PHP application that is affected by multiple cross-site scripting vulnerabilities.Description
According to its self-reported version number, the Joomla! installation running on the remote web server is 2.5.x prior to 2.5.16 or 3.x prior to 3.1.6. It is, therefore, affected by multiple cross-site (XSS) scripting vulnerabilities, related to the com_contact, com_weblinks, and com_newsfeeds components, due to improper validation of input before returning it to users. An unauthenticated, remote attacker can exploit these, via a specially crafted request, to execute arbitrary script code in a user's browser session.Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version number.
Solution
Upgrade to version Joomla! version 2.5.16 / 3.1.6 / 3.2.0 or later.Alternatively, apply the patch referenced in the vendor advisory.
See Also
https://developer.joomla.org/security/570-core-xss-20131101.html
https://developer.joomla.org/security/571-core-xss-20131102.html
https://developer.joomla.org/security/572-core-xss-20131103.html
Plugin Details
Severity: Medium
ID: 70918
File Name: joomla_320.nasl
Version: 1.17
Type: remote
Family: CGI abuses : XSS
Published: 11/14/2013
Updated: 4/11/2022
Configuration: Enable paranoid mode, Enable thorough checks
Supported Sensors: Nessus
Risk Information
CVSS v2
Risk Factor: Medium
Base Score: 4.3
Temporal Score: 3.2
Vector: CVSS2#AV:N/AC:M/Au:N/C:N/I:P/A:N
CVSS v3
Risk Factor: Medium
Base Score: 4.7
Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:N/I:L/A:N
Vulnerability Information
CPE: cpe:/a:joomla:joomla%5c%21
Required KB Items: www/PHP, Settings/ParanoidReport, installed_sw/Joomla!
Exploit Ease: No known exploits are available
Patch Publication Date: 11/6/2013
Vulnerability Publication Date: 10/6/2013
Reference Information
BID: 63598