SecPod SCAP Repo, a repository of SCAP Content (CVE, CCE, CPE, CWE, OVAL and XCCDF)

Download | Alert*

CVE

CVE-2012-0822

Cross-site scripting (XSS) vulnerability in Joomla! 1.6 and 1.7.x before 1.7.4 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors, a different vulnerability than CVE-2012-0820.

CVSS Score and Metrics +CVSS Score and Metrics -

CVSS V2 Severity:
CVSS Score : 4.3
Exploit Score: 8.6
Impact Score: 2.9

CVSS V2 Metrics:
Access Vector: NETWORK
Access Complexity: MEDIUM
Authentication: NONE
Confidentiality: NONE
Integrity: PARTIAL
Availability: NONE

Reference:

SECUNIA-47753

OSVDB-78516

http://www.openwall.com/lists/oss-security/2012/01/25/1

http://www.openwall.com/lists/oss-security/2012/01/26/2

http://www.openwall.com/lists/oss-security/2012/01/26/4

http://www.openwall.com/lists/oss-security/2012/01/30/1

http://developer.joomla.org/security/news/385-20120104-core-xss-vulnerability

http://www.joomla.org/announcements/release-news/5403-joomla-250-released.html

http://www.joomla.org/announcements/release-news/5405-joomla-174-released.html


30430



423868



247621



909



194512



282