5.8 Medium
AI Score
Confidence
High
0.001 Low
EPSS
Percentile
50.7%
Multiple cross-site scripting (XSS) vulnerabilities in the JXtended Comments component before 1.3.1 for Joomla allow remote attackers to inject arbitrary web script or HTML via unspecified vectors.
jxtended.com/blog/releases/375-jxtended-comments-131-stable-released.html
secunia.com/advisories/42534
www.securityfocus.com/bid/45296