CVE-2006-7122: XSS
First published: Tue Mar 06 2007(Updated: )
Cross-site scripting (XSS) vulnerability in the IP Address Lookup functionality in BSQ Sitestats (component for Joomla) 1.8.0, and possibly other versions before 2.2.1, allows remote attackers to inject arbitrary web script and HTML via the ip parameter.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Joomla BSQ Sitestats | =1.8.0 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of CVE-2006-7122?
CVE-2006-7122 is considered a medium severity vulnerability due to its potential for cross-site scripting attacks.
How do I fix CVE-2006-7122?
To fix CVE-2006-7122, upgrade the BSQ Sitestats component to version 2.2.1 or later.
Who is affected by CVE-2006-7122?
CVE-2006-7122 affects users of the BSQ Sitestats component for Joomla version 1.8.0 and possibly earlier versions.
What type of vulnerability is CVE-2006-7122?
CVE-2006-7122 is a cross-site scripting (XSS) vulnerability.
How can attackers exploit CVE-2006-7122?
Attackers can exploit CVE-2006-7122 by injecting arbitrary web scripts and HTML through the ip parameter in the IP Address Lookup functionality.
- collector/nvd-historical
- collector/nvd-index
- agent/type
- agent/softwarecombine
- collector/mitre-cve
- source/MITRE
- agent/weakness
- agent/author
- agent/last-modified-date
- agent/references
- agent/severity
- agent/remedy
- agent/tags
- agent/description
- agent/first-publish-date
- agent/event
- agent/source
- vendor/joomla
- canonical/joomla bsq sitestats
- version/joomla bsq sitestats/1.8.0