MidnightBSD

Advisories for maxxmarketing

CVE-2013-3933 MEDIUM

Cross-site scripting (XSS) vulnerability in the JoomShopping (com_joomshopping) component before 4.3.1 for Joomla! allows remote attackers to inject arbitrary web script or HTML via the user_name parameter to index.php.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-79,

Products Affected

Vendor Product Version
maxxmarketing joomshopping 4.2.0
maxxmarketing joomshopping *
maxxmarketing joomshopping 4.2.2
maxxmarketing joomshopping 4.1.0
maxxmarketing joomshopping 4.0.0
maxxmarketing joomshopping 4.2.1