|Category:||Web application abuses|
|Title:||Joomla 'Lyftenbloggie' Component Cross-Site Scripting Vulnerabilities|
|Summary:||Check if Joomla Lyftenbloggie component is vulnerable for XSS attack|
Overview: This host is running Joomla and is prone to Multiple Cross Site
- Input passed via the 'tag' and 'category' parameters to 'index.php'
(when 'option' is set to 'com_lyftenbloggie') is not properly sanitised
before being returned to the user.
Successful exploitation will let attackers to execute arbitrary script code
in the browser of an unsuspecting user in the context of the affected site.
Impact Level: Application.
Joomla Lyftenbloggie component version 1.1.0
Fix: No solution or patch is available as of 10th February 2011. Information
regarding this issue will be updated once the solution details are available.
For updates refer to http://www.lyften.com/products/lyften-bloggie.html
BugTraq ID: 45468|
Common Vulnerability Exposure (CVE) ID: CVE-2010-4718
|Copyright||Copyright (C) 2011 Greenbone Networks GmbH|
|This is only one of 40605 vulnerability tests in our test suite. Find out more about running a complete security audit.|
To run a free test of this vulnerability against your system, register below.