vendor:
com_trabalhe_conosco
by:
Pyske
7.5
CVSS
HIGH
Cross Site Scripting
79
CWE
Product Name: com_trabalhe_conosco
Affected Version From: N/A
Affected Version To: N/A
Patch Exists: NO
Related CWE: N/A
CPE: N/A
Metasploit:
N/A
Other Scripts:
N/A
Tags: N/A
CVSS Metrics: N/A
Nuclei References:
N/A
Nuclei Metadata: N/A
Platforms Tested: N/A
2020
Joomla Component com_trabalhe_conosco Cross Site Scripting Vulnerabilities
A Cross Site Scripting vulnerability exists in the Joomla Component com_trabalhe_conosco, which allows an attacker to inject malicious JavaScript code into the vulnerable application. This code can be used to steal user cookies and gain access to the administrator account. The vulnerability can be exploited by sending a specially crafted HTTP request containing malicious JavaScript code to the vulnerable application.
Mitigation:
Input validation should be used to filter out malicious characters.