Miwisoft: >> Mijosearch >> 1.3.0 Security Vulnerabilities
Cross-site scripting (XSS) vulnerability in the Mijosoft MijoSearch component 2.0.4 and earlier for Joomla! allows remote attackers to inject arbitrary web script or HTML via the query parameter to component/mijosearch/search.
CVSS Score
6.1
EPSS Score
0.003
Published
2019-11-22
The Mijosoft MijoSearch component 2.0.1 and earlier for Joomla! allows remote attackers to obtain sensitive information via a request to component/mijosearch/search, which reveals the installation path in an error message.
CVSS Score
5.3
EPSS Score
0.004
Published
2019-11-22