CVE-2010-4949

Cross-site scripting (XSS) vulnerability in the (1) FreiChat component before 2.1.2 for Joomla! and the (2) FreiChatPure component before 1.2.2 for Joomla! allows remote attackers to inject arbitrary web script or HTML by entering it in an unspecified window.
Configurations

Configuration 1 (hide)

AND
OR cpe:2.3:a:evnix:freichat:*:*:*:*:*:*:*:*
cpe:2.3:a:evnix:freichat:1.0:*:*:*:*:*:*:*
cpe:2.3:a:evnix:freichat:2.0:*:*:*:*:*:*:*
cpe:2.3:a:evnix:freichat:2.1:*:*:*:*:*:*:*
cpe:2.3:a:joomla:joomla\!:*:*:*:*:*:*:*:*

Configuration 2 (hide)

AND
OR cpe:2.3:a:evnix:freichatpure:*:*:*:*:*:*:*:*
cpe:2.3:a:evnix:freichatpure:1.0:*:*:*:*:*:*:*
cpe:2.3:a:evnix:freichatpure:1.2:*:*:*:*:*:*:*
cpe:2.3:a:joomla:joomla\!:*:*:*:*:*:*:*:*

History

No history.

Information

Published : 2011-10-09 10:55

Updated : 2024-02-28 11:41


NVD link : CVE-2010-4949

Mitre link : CVE-2010-4949

CVE.ORG link : CVE-2010-4949


JSON object : View

Products Affected

joomla

  • joomla\!

evnix

  • freichat
  • freichatpure
CWE
CWE-79

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')