vendor:
Joomla JLex Review
by:
CraCkEr
N/A
CVSS
MEDIUM
Reflected XSS
79
CWE
Product Name: Joomla JLex Review
Affected Version From: 6.0.1
Affected Version To: 6.0.1
Patch Exists: YES
Related CWE:
CPE: a:jlexart:jlex_review:6.0.1
Platforms Tested: Windows 10 Pro
2023
Joomla JLex Review 6.0.1 – Reflected XSS
The attacker can send to victim a link containing a malicious URL in an email or instant message that can perform a wide variety of actions, such as stealing the victim's session token or login credentials.
Mitigation:
Update to the latest version of Joomla JLex Review to fix the vulnerability. Avoid clicking on suspicious links.