CVE-2010-4949

Cross-site scripting (XSS) vulnerability in the (1) FreiChat component before 2.1.2 for Joomla! and the (2) FreiChatPure component before 1.2.2 for Joomla! allows remote attackers to inject arbitrary web script or HTML by entering it in an unspecified window.
Configurations

Configuration 1 (hide)

AND
OR cpe:2.3:a:evnix:freichat:*:*:*:*:*:*:*:*
cpe:2.3:a:evnix:freichat:1.0:*:*:*:*:*:*:*
cpe:2.3:a:evnix:freichat:2.0:*:*:*:*:*:*:*
cpe:2.3:a:evnix:freichat:2.1:*:*:*:*:*:*:*
cpe:2.3:a:joomla:joomla\!:*:*:*:*:*:*:*:*

Configuration 2 (hide)

AND
OR cpe:2.3:a:evnix:freichatpure:*:*:*:*:*:*:*:*
cpe:2.3:a:evnix:freichatpure:1.0:*:*:*:*:*:*:*
cpe:2.3:a:evnix:freichatpure:1.2:*:*:*:*:*:*:*
cpe:2.3:a:joomla:joomla\!:*:*:*:*:*:*:*:*

History

21 Nov 2024, 01:22

Type Values Removed Values Added
References () http://forum.joomla.org/viewtopic.php?p=2209586 - Exploit () http://forum.joomla.org/viewtopic.php?p=2209586 - Exploit
References () http://secunia.com/advisories/40751 - Vendor Advisory () http://secunia.com/advisories/40751 - Vendor Advisory
References () http://www.osvdb.org/66628 - () http://www.osvdb.org/66628 -
References () http://www.securityfocus.com/bid/41961 - Exploit () http://www.securityfocus.com/bid/41961 - Exploit
References () https://exchange.xforce.ibmcloud.com/vulnerabilities/60828 - () https://exchange.xforce.ibmcloud.com/vulnerabilities/60828 -

Information

Published : 2011-10-09 10:55

Updated : 2024-11-21 01:22


NVD link : CVE-2010-4949

Mitre link : CVE-2010-4949

CVE.ORG link : CVE-2010-4949


JSON object : View

Products Affected

evnix

  • freichat
  • freichatpure

joomla

  • joomla\!
CWE
CWE-79

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')