CVE-2011-3595

EPSS 0.8%

Vexday Risk Score

3Low

SSVC decision (CISA)

Track

No exploitation signal → monitor

CVSS —EPSS 0.8%KEV nãoPoC —Nuclei —Metasploit —Patch —

Lifecycle

22 Jan 2020Published on NVD

Recommendation: Monitor — no exploitation signal at the moment.

Multiple Cross-site Scripting (XSS) vulnerabilities exist in Joomla! through 1.7.0 in index.php in the search word, extension, asset, and author parameters.

Affected products

Joomla! · Joomla!

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

https://www.openwall.com/lists/oss-security/2011/10/04/7 https://www.rapid7.com/db/vulnerabilities/joomla-20110902-core-xss-vulnerability http://yehg.net/lab/pr0js/advisories/joomla/core/%5Bjoomla_1.7.0-stable%5D_cross_site_scripting%28XSS%29