CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2009-3155

Cross-site scripting (XSS) vulnerability in gmap.php in the Almond Classifieds (com_aclassf) component 7.5 for Joomla! allows remote attackers to inject arbitrary web script or HTML via the addr parameter.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.008

EPSS Ranking 73.6%

CVSS Severity

CVSS v2 Score 4.3

References

http://secunia.com/advisories/35998
http://www.exploit-db.com/exploits/9258
http://www.osvdb.org/56561
http://secunia.com/advisories/35998
http://www.exploit-db.com/exploits/9258
http://www.osvdb.org/56561

Products affected by CVE-2009-3155

Almondsoft » Com Aclassf » Version: 7.5

cpe:2.3:a:almondsoft:com_aclassf:7.5
Joomla » Joomla » Version: Any

cpe:2.3:a:joomla:joomla:*

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2009-3155

Products

Pricing

Contact Us