Vulnerability Details CVE-2018-10068
The jDownloads extension before 3.2.59 for Joomla! has XSS.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.04
EPSS Ranking 87.9%
CVSS Severity
CVSS v3 Score 6.1
CVSS v2 Score 4.3
References
- http://www.jdownloads.com/index.php/news/264-jdownloads-3-2-59-published.html
- https://vel.joomla.org/resolved/2150-jdownloads-3-2-58-xss-cross-site-scripting
- https://www.exploit-db.com/exploits/44471/
- http://www.jdownloads.com/index.php/news/264-jdownloads-3-2-59-published.html
- https://vel.joomla.org/resolved/2150-jdownloads-3-2-58-xss-cross-site-scripting
- https://www.exploit-db.com/exploits/44471/
Products affected by CVE-2018-10068
-
cpe:2.3:a:jdownloads:jdownloads:1.8.4
-
cpe:2.3:a:jdownloads:jdownloads:1.9.1.6
-
cpe:2.3:a:jdownloads:jdownloads:1.9.2
-
cpe:2.3:a:jdownloads:jdownloads:1.9.2.11
-
cpe:2.3:a:jdownloads:jdownloads:1.9.6
-
cpe:2.3:a:jdownloads:jdownloads:2.5.30