CVE-2009-4579

Cross-site scripting (XSS) vulnerability in the Artist avenue (com_artistavenue) component for Joomla! and Mambo allows remote attackers to inject arbitrary web script or HTML via the Itemid parameter to index.php.
Configurations

Configuration 1 (hide)

AND
cpe:2.3:a:joomla:com_artistavenue:*:*:*:*:*:*:*:*
OR cpe:2.3:a:joomla:joomla\!:*:*:*:*:*:*:*:*
cpe:2.3:a:mambo-foundation:mambo:*:*:*:*:*:*:*:*

History

No history.

Information

Published : 2010-01-06 22:00

Updated : 2024-02-04 17:54


NVD link : CVE-2009-4579

Mitre link : CVE-2009-4579

CVE.ORG link : CVE-2009-4579


JSON object : View

Products Affected

mambo-foundation

  • mambo

joomla

  • joomla\!
  • com_artistavenue
CWE
CWE-79

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')