CVE-2007-4779: XSS
First published: Mon Sep 10 2007(Updated: )
Cross-site scripting (XSS) vulnerability in Joomla! 1.5 before RC2 (aka Endeleo) allows remote attackers to inject arbitrary web script or HTML via unspecified vectors, probably related to the archive section.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Joomla | =1.5.0_rc1 | |
| Joomla | =1.5.0_beta2 | |
| Joomla | =1.5.0_beta |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of CVE-2007-4779?
CVE-2007-4779 is classified as a moderate severity cross-site scripting (XSS) vulnerability.
How do I fix CVE-2007-4779?
To fix CVE-2007-4779, upgrade to Joomla! version 1.5 RC2 or later.
Which versions of Joomla! are affected by CVE-2007-4779?
CVE-2007-4779 affects Joomla! versions 1.5.0 RC1, 1.5.0 Beta2, and 1.5.0 Beta.
What type of vulnerability is CVE-2007-4779?
CVE-2007-4779 is a cross-site scripting (XSS) vulnerability that allows for the injection of arbitrary web scripts or HTML.
Can CVE-2007-4779 be exploited by remote attackers?
Yes, CVE-2007-4779 can be exploited remotely by attackers to inject malicious scripts.
- agent/references
- agent/type
- agent/remedy
- agent/softwarecombine
- collector/mitre-cve
- source/MITRE
- agent/severity
- agent/author
- agent/last-modified-date
- agent/weakness
- agent/first-publish-date
- agent/description
- agent/event
- agent/source
- agent/tags
- collector/nvd-historical
- agent/software-canonical-lookup-request
- collector/nvd-index
- vendor/joomla
- canonical/joomla
- version/joomla/1.5.0_rc1
- version/joomla/1.5.0_beta2
- version/joomla/1.5.0_beta