Jeff Channell | Rapid Forum XSS Vulnerability | Joomla!

Thursday, 17 September 2009 00:00

The Joomla component Rapid Forum suffers from a persistent XSS vulnerability.

This vulnerability is pretty easy to exploit, as Rapid Forum does absolutely no validation or encoding whatsoever.

<script>alert(document.cookie)</script>

Timeline

Vulnerabilites Discovered: 31 July 2009
Vendor Notified: 31 July 2009
Vender Response: ... 2009
Update Available: ... 2009
Disclosure: 17 September 2009

Last Updated on Thursday, 17 September 2009 22:30

Add your comment

Your name:
Comment:

Word verification:

Featured Extensions

JTemplateInfo

$3.00

Metarizer

$1.00

Joonami

$1.00
FREE
You Save: $1.00

JMan

FREE

Latest Articles

Most Popular

Jeff Channell

Cart

Your Cart is currently empty.

Keywords

update . release . as3 . jquery . xss . custom . flash . exploit . jnoguest . jomsocial . css . component . flex . vulnerability . javascript . mootools . linux . php . joomla . plugin . wtf . jmylife . list . module . error . extension . fairmont . template . bbcode . fix .

Template Info

Name
Circles
Creation Date
06/28/09
Author
Jeff Channell
Author Email
me@jeffchannell.com
Author URL
http://jeffchannell.com
Version
0.0.2
Description
Circles