4.3
CVE-2006-1029
- EPSS 1.39%
- Veröffentlicht 07.03.2006 00:02:00
- Zuletzt bearbeitet 16.06.2026 22:21:53
- Quelle cve@mitre.org
- CVE-Watchlists
- Unerledigt
The cross-site scripting (XSS) countermeasures in class.inputfilter.php in Joomla! 1.0.7 allow remote attackers to cause a denial of service via a crafted mosmsg parameter to index.php with a malformed sequence of multiple tags, as demonstrated using "<<>AAA<><>", possibly due to nested or empty tags.
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 1.39% | 0.687 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 4.3 | 8.6 | 2.9 |
AV:N/AC:M/Au:N/C:N/I:N/A:P
|
http://www.joomla.org/content/view/938/78/
http://www.securityfocus.com/archive/1/426538/100/0/threaded
http://www.osvdb.org/23816