Skip to content

SSCHADV2012-014 - Joomla 2.5.6 Multiple Cross-site scripting vulnerabilities

Advisory:
Joomla 2.5.6 Multiple Cross-site scripting vulnerabilities
Advisory ID:
SSCHADV2012-014
Author:
Stefan Schurtz
Affected Software:
Successfully tested on Joomla 2.5.6
Vendor URL:
Vendor Status:
fixed
 
======================
Vulnerability Description
======================
 
With activated "Module Language Switcher – position-4" (Extensions -> Modules -> Module Manager: Module Language Switcher), multiple XSS are possible.
 
Continue reading "SSCHADV2012-014 - Joomla 2.5.6 Multiple Cross-site scripting vulnerabilities"

SSCHADV2012-019 - Admidio 2.3.5 Multiple security vulnerabilities

Advisory:
Admidio 2.3.5 Multiple security vulnerabilities
Advisory ID:
SSCHADV2012-019
Author:
Stefan Schurtz
Affected Software:
Successfully tested on Admidio 2.3.5
Vendor URL:
Vendor Status:
fixed
CVE-ID:
CVE-2012-4748, CVE-2012-4749
 
======================
Vulnerability Description
======================
 
Admidio 2.3.5 is prone to XSS and SQLi vulnerabilities
 
Continue reading "SSCHADV2012-019 - Admidio 2.3.5 Multiple security vulnerabilities"
Imprint | Contact | Privacy Statement