Joomla UIajaxIM Component Script Insertion Vulnerability 

SECUNIA ADVISORY ID:
SA35968

VERIFY ADVISORY:
http://secunia.com/advisories/35968/

DESCRIPTION:
A vulnerability has been discovered in the UIajaxIM component for
Joomla, which can be exploited by malicious users to conduct script
insertion attacks.

The vulnerability is caused due to a vulnerable version of Ajax IM.

For more information:
SA35927

The vulnerability is confirmed in version 1.4. Other versions may
also be affected.

SOLUTION:
Edit the source code to ensure that input is properly sanitised.

Grant only trusted users access to the application.

PROVIDED AND/OR DISCOVERED BY:
599eme Man

ORIGINAL ADVISORY:
http://milw0rm.com/exploits/9244

OTHER REFERENCES:
SA35927:
http://secunia.com/advisories/35927/

DOWNLOAD
JOOMLA!

Download Joomla!

Joomla! 4.x Thai Translation Language Packs

Joomla! 3.x Thai Translation Language Packs

OUR NETWORK


CMSPlugin.com
Joomla Extensions, Joomla Templates

Joomla!® User Group Thailand
Joomla!® User Group Thailand


Marvelic Engine Co., Ltd. รับพัฒนาเว็บไซต์ด้วย Joomla! , รับอบรม Joomla , ผู้เชี่ยวชาญ จูมล่า
รับทำเว็บ Joomla, อบรบ Joomla

Ribbon