Cross-site scripting (XSS) vulnerability in the Q-Personel (com_qpersonel) component 1.0.2 RC2 for Joomla! allows remote malicious users to inject arbitrary web script or HTML via the personel_sira parameter in a sirala action to index.php.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
qproje com_qpersonel 1.2 |