cve/2012/CVE-2012-1018.md

CVE-2012-1018

Description

Cross-site scripting (XSS) vulnerability in includes/convert.php in D-Mack Media Currency Converter (mod_currencyconverter) module 1.0.0 for Joomla! allows remote attackers to inject arbitrary web script or HTML via the from parameter.

POC

Reference

• http://dl.packetstormsecurity.net/1202-exploits/joomlacurrencyconverter-xss.txt

Github

No PoCs found on GitHub currently.