CVE-2013-3082

Published: Jun 9, 2014

Modified: Aug 6, 2024

PUBLISHED

Description

Cross-site scripting (XSS) vulnerability in plugins/jojo_core/forgot_password.php in Jojo before 1.2.2 allows remote attackers to inject arbitrary web script or HTML via the search parameter to forgot-password/.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

https://www.htbridge.com/advisory/HTB23153

x_refsource_MISC

jojocms-cve20133082-xss(84286)

vdb-entry

x_refsource_XF

https://github.com/JojoCMS/Jojo-CMS/commit/9c000f961635e35e9984a8c16ca69c2cbf2d2236

x_refsource_CONFIRM

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2013-3082

Description

Affected Products

References