CVE-2011-0005

N/A Unknown

Published: January 11, 2011 Modified: April 29, 2026

Description

Cross-site scripting (XSS) vulnerability in the com_search module for Joomla! 1.0.x through 1.0.15 allows remote attackers to inject arbitrary web script or HTML via the ordering parameter to index.php.

AI Explanation

Get an AI-powered plain-language explanation of this vulnerability and remediation steps.

References to Advisories, Solutions, and Tools

Patch Vendor Advisory Exploit Third Party Advisory

http://osvdb.org/70369

Source: secalert@redhat.com

http://packetstormsecurity.org/files/view/97273/joomla1015-xss.txt

Source: secalert@redhat.com

Exploit

http://www.securityfocus.com/archive/1/515553/100/0/threaded

Source: secalert@redhat.com

http://www.securityfocus.com/archive/1/515590/100/0/threaded

Source: secalert@redhat.com

http://www.securityfocus.com/bid/45679

Source: secalert@redhat.com

Exploit

http://yehg.net/lab/pr0js/advisories/joomla/core/%5Bjoomla_1.0.x~15%5D_cross_site_scripting

Source: secalert@redhat.com

https://exchange.xforce.ibmcloud.com/vulnerabilities/64539

Source: secalert@redhat.com

http://osvdb.org/70369