CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2011-0005

Cross-site scripting (XSS) vulnerability in the com_search module for Joomla! 1.0.x through 1.0.15 allows remote attackers to inject arbitrary web script or HTML via the ordering parameter to index.php.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 18.1%

CVSS Severity

CVSS v2 Score 4.3

References

http://osvdb.org/70369
http://packetstormsecurity.org/files/view/97273/joomla1015-xss.txt
http://www.securityfocus.com/archive/1/515553/100/0/threaded
http://www.securityfocus.com/archive/1/515590/100/0/threaded
http://www.securityfocus.com/bid/45679
http://yehg.net/lab/pr0js/advisories/joomla/core/%5Bjoomla_1.0.x~15%5D_cross_site_scripting
https://exchange.xforce.ibmcloud.com/vulnerabilities/64539
http://osvdb.org/70369
http://packetstormsecurity.org/files/view/97273/joomla1015-xss.txt
http://www.securityfocus.com/archive/1/515553/100/0/threaded
http://www.securityfocus.com/archive/1/515590/100/0/threaded
http://www.securityfocus.com/bid/45679
http://yehg.net/lab/pr0js/advisories/joomla/core/%5Bjoomla_1.0.x~15%5D_cross_site_scripting
https://exchange.xforce.ibmcloud.com/vulnerabilities/64539

Products affected by CVE-2011-0005

Joomla » Com Search » Version: Any

cpe:2.3:a:joomla:com_search:*
Joomla » Joomla! » Version: 1.0.0

cpe:2.3:a:joomla:joomla!:1.0.0
Joomla » Joomla! » Version: 1.0.15

cpe:2.3:a:joomla:joomla!:1.0.15

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2011-0005

Products

Pricing

Contact Us