CVE-2010-4949 – Joomla! Component FreiChat 1.0/2.x - HTML Injection

https://notcve.org/view.php?id=CVE-2010-4949

Cross-site scripting (XSS) vulnerability in the (1) FreiChat component before 2.1.2 for Joomla! and the (2) FreiChatPure component before 1.2.2 for Joomla! allows remote attackers to inject arbitrary web script or HTML by entering it in an unspecified window. Vulnerabilidad de ejecución de secuencias de comandos en sitios cruzados (XSS) en el (1) componente FreiChat anterior a v2.1.2 para Joomla! y en el (2) componente FreiChatPure anterior v1.2.2 para Joomla! • https://www.exploit-db.com/exploits/34374 http://forum.joomla.org/viewtopic.php?p=2209586 http://secunia.com/advisories/40751 http://www.osvdb.org/66628 http://www.securityfocus.com/bid/41961 https://exchange.xforce.ibmcloud.com/vulnerabilities/60828 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •