Joomla Huge-IT Video Gallery Extension Cross Site Scripting Vulnerability (CVE-2016-1000116)
Publish Date: 09 de ноября de 2016
Severity: : Medium
DESCRIPTION
A reflected Cross Site Scripting (XSS) vulnerability has been found in the Huge-IT Video Gallery Joomla Extension. By using this vulnerability an attacker can inject malicious JavaScript code into the application, which will execute within the browser of any logged-in admin who views the page with injected code.
INFORMATION EXPOSURE
Apply associated Trend Micro DPI Rules.
SOLUTION
Trend Micro Deep Security DPI Rule Number: 1000552