5:28 AMCross-Site Scripting vulnerability in 3D Cloud for Joomla
I want to warn you about Cross-Site Scripting vulnerability in 3D Cloud
(mod_3dcloud) plugin for Joomla. Which I found and disclosed at 22.01.2010.
It is similar to XSS vulnerability in JVClouds3D for Joomla
tagcloud.swf which are vulnerable to XSS attacks I mentioned in my article
XSS vulnerabilities in 34 millions flash files
Code will execute after click. It's strictly social XSS.
Vulnerable are 3D Cloud 1.3 and previous versions.
I mentioned about this vulnerability at my site
Best wishes & regards,
Administrator of Websecurity web site
|Total comments: 0|