Vulnerabilities > CVE-2006-1029 - Unspecified vulnerability in Joomla 1.0.7

CVSS 0.0 - NONE

Attack vector

UNKNOWN

Attack complexity

UNKNOWN

Privileges required

UNKNOWN

Confidentiality impact

UNKNOWN

Integrity impact

UNKNOWN

Availability impact

UNKNOWN

joomla

NVD

Published: 2006-03-07

Updated: 2018-10-18

Summary

The cross-site scripting (XSS) countermeasures in class.inputfilter.php in Joomla! 1.0.7 allow remote attackers to cause a denial of service via a crafted mosmsg parameter to index.php with a malformed sequence of multiple tags, as demonstrated using "<<>AAA<><>", possibly due to nested or empty tags.

Vulnerable Configurations

Part	Description	Count
Application	Joomla Joomla Joomla 1.0.7	1

References

http://www.joomla.org/content/view/938/78/
http://www.osvdb.org/23816
http://www.securityfocus.com/archive/1/426538/100/0/threaded