Published: 16/01/2019 Updated: 26/02/2019

CVSS v2 Base Score: 3.5 | Impact Score: 2.9 | Exploitability Score: 6.8

CVSS v3 Base Score: 4.8 | Impact Score: 2.7 | Exploitability Score: 1.7

VMScore: 355

Vector: AV:N/AC:M/Au:S/C:N/I:P/A:N

An issue exists in Joomla! prior to 3.9.2. Inadequate checks of the Global Configuration Text Filter settings allowed stored XSS.

Vulnerable Product	Search on Vulmon	Subscribe to Product
joomla joomla\\!

# Exploit Title: [Joomla Global Configuration Text Filter settings Stored XSS Vulnerability] # Date: [18/01/2019] # Exploit Author: [Praveen Sutar] , Twitter: @praveensutar123 # Vendor Homepage: [wwwjoomlaorg/] # Affected Versions: [Joomla versions 250 through 391] # Tested on: [Joomla 391] # CVE : [CVE-2019-6263] # Vendor Advisory: ...

Joomla! version 391 suffers from a persistent cross site scripting vulnerability in the global configuration textfilter settings ...

CVE-2019-6263-Joomla-POC

CWE-79 https://developer.joomla.org/security-centre/762-20190103-core-stored-xss-issue-in-the-global-configuration-textfilter-settings http://www.securityfocus.com/bid/106638 https://www.exploit-db.com/exploits/46200/https://nvd.nist.gov https://github.com/praveensutar/CVE-2019-6263-Joomla-POC https://www.exploit-db.com/exploits/46200

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2019-6263

Vulnerability Summary

Vulnerability Trend

Exploits

Github Repositories

References

Vulmon Search

About

Products

Connect