Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2012-1612

Overview

Vulnerability Score 4.3 4.3
CVE Id CVE-2012-1612
Last Modified 07 Sep 2012 09:46:49
Published 06 Sep 2012 05:55:01
Confidentiality Impact NONE NONE
Integrity Impact PARTIAL PARTIAL
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity MEDIUM
Authentication NONE

CVE-2012-1612

Summary

Cross-site scripting (XSS) vulnerability in the update manager in Joomla! 2.5.x before 2.5.4 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.

Vulnerable Systems

Application

  • Joomla%21 2.5.0

  • Joomla%21 2.5.1

  • Joomla%21 2.5.2

  • Joomla%21 2.5.3


References

BID - 52859

OSVDB - 80880

MLIST - [oss-security] 20120403 Re: CVE-request: Joomla 2012-04 398-20120307 399-20120308

MLIST - [oss-security] 20120403 CVE-request: Joomla 2012-04 398-20120307 399-20120308

SECUNIA - 48683

CONFIRM - http://developer.joomla.org/security/news/399-20120308-core-xss-vulnerability.html


Last Updated: 27 May 2016 11:00:30