CVE-2015-6939 – Joomla! CMS 3.4.3 Cross Site Scripting
https://notcve.org/view.php?id=CVE-2015-6939
Cross-site scripting (XSS) vulnerability in the login module in Joomla! 3.4.x before 3.4.4 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. Vulnerabilidad de XSS en el módulo de inicio de sesión en Joomla! 3.4.x en versiones anteriores a 3.4.4, permite a atacantes remotos inyectar secuencias de comandos web o HTML arbitrarios a través de vectores no especificados . Joomla! • http://developer.joomla.org/security-centre/626-20150908-core-xss-vulnerability.html http://packetstormsecurity.com/files/133907/Joomla-CMS-3.4.3-Cross-Site-Scripting.html http://www.securitytracker.com/id/1033541 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •