CVE-2010-5048

Cross-site scripting (XSS) vulnerability in admin.jcomments.php in the JoomlaTune JComments (com_jcomments) component 2.1.0.0 for Joomla! allows remote authenticated users to inject arbitrary web script or HTML via the name parameter to index.php.

Date published : 2011-11-22

http://www.securityfocus.com/bid/40230

http://www.securityfocus.com/archive/1/511320/100/0/threaded