Vigil@nce: Joomla, several Cross Site Scripting
June 2010 by Vigil@nce
This bulletin was written by Vigil@nce : http://vigilance.fr/
SYNTHESIS OF THE VULNERABILITY
An attacker can use several Cross Site Scripting of the
administration interface of Joomla, in order to execute privileged
JavaScript code.
– Severity: 2/4
– Creation date: 31/05/2010
– Revision date: 03/06/2010
DESCRIPTION OF THE VULNERABILITY
The administration interface of Joomla contains several
components, listing data which can be filtered:
– administrator/components/com_banners/controllers/banner.php
– administrator/components/com_content/models/element.php
– administrator/components/com_messages/admin.messages.html.php
– etc.
These data are filtered using a SQL LIKE query, which is built
from data to search. However, the "search" variables are not
filtered before being displayed.
An attacker can therefore use several Cross Site Scripting of the
administration interface of Joomla, in order to execute privileged
JavaScript code.
ACCESS TO THE COMPLETE VIGIL@NCE BULLETIN
http://vigilance.fr/vulnerability/Joomla-several-Cross-Site-Scripting-9675