Description
Cross-site scripting (XSS) vulnerability in gmap.php in the Almond Classifieds (com_aclassf) component 7.5 for Joomla! allows remote attackers to inject arbitrary web script or HTML via the addr parameter.
Affected products
- almondsoft / com_aclassf7.5 – 7.5
References
- VENDOR_ADVISORYhttp://secunia.com/advisories/35998
- MISChttp://www.osvdb.org/56561
- EXPLOIThttp://www.exploit-db.com/exploits/9258