Vulnerabilities > CVE-2006-6834 - Cross-Site Scripting vulnerability in Joomla

CVSS 6.8 - MEDIUM

Attack vector

NETWORK

Attack complexity

MEDIUM

Privileges required

NONE

Confidentiality impact

PARTIAL

Integrity impact

PARTIAL

Availability impact

PARTIAL

network

joomla

nessus

NVD

Published: 2006-12-31

Updated: 2011-03-08

Summary

Multiple unspecified vulnerabilities in Joomla! before 1.0.12 have unknown impact and attack vectors related to (1) "unneeded legacy functions" and (2) "Several low level security fixes."

Vulnerable Configurations

Part	Description	Count
Application	Joomla Joomla Joomla 1.0 Joomla Joomla 1.0.1 Joomla Joomla 1.0.2 Joomla Joomla 1.0.3 Joomla Joomla 1.0.4 Joomla Joomla 1.0.5 Joomla Joomla 1.0.7 Joomla Joomla 1.0.8 Joomla Joomla 1.0.9 Joomla Joomla 1.0.10 Joomla Joomla 1.0.11	11

Nessus

NASL family	FreeBSD Local Security Checks
NASL id	FREEBSD_PKG_7BB127C1A5AA11DB9DDC0011098B2F36.NASL
description	Secunia reports : Some vulnerabilities have been reported in Joomla!, where some have unknown impacts and one can be exploited by malicious people to conduct cross-site scripting attacks. - Input passed to an unspecified parameter is not properly sanitised before being returned to the user. This can be exploited to execute arbitrary HTML and script code in a user
last seen	2020-06-01
modified	2020-06-02
plugin id	24227
published	2007-01-18
reporter	This script is Copyright (C) 2007-2019 and is owned by Tenable, Inc. or an Affiliate thereof.
source	https://www.tenable.com/plugins/nessus/24227
title	FreeBSD : joomla -- multiple remote vulnerabilities (7bb127c1-a5aa-11db-9ddc-0011098b2f36)

Summary

Vulnerable Configurations

Nessus

References