The cross-site scripting (XSS) countermeasures in class.inputfilter.php in Joomla! 1.0.7 allow remote attackers to cause a denial of service via a crafted mosmsg parameter to index.php with a malformed sequence of multiple tags, as demonstrated using "<<>AAA<><>", possibly due to nested or empty tags.
Max CVSS
4.3
EPSS Score
0.85%
Published
2006-03-07
Updated
2018-10-18
feedcreator.class.php (aka the syndication component) in Joomla! 1.0.7 allows remote attackers to cause a denial of service (stressed file cache) by creating many files via filenames in the feed parameter to index.php.
Max CVSS
7.8
EPSS Score
1.83%
Published
2006-03-07
Updated
2018-10-18
2 vulnerabilities found