Joomla!.VirtueMart.Extension.Order.Vtip.XSS

description-logoDescription

This indicates an attack attempt to exploit a Cross-Site Scripting vulnerability in Joomla! VirtueMart Extension.
The vulnerability is a result of the application's failure to properly sanitize user supplied input. A remote attacker may be able to exploit this to execute arbitrary script code within the context of the application. This vulnerability was discovered by Fortinet FortiGuard Labs.

affected-products-logoAffected Products

VirtueMart Extension version 3.0.6.2

Impact logoImpact

System Compromise: Remote attackers can execute arbitrary script code in the context of the affected site.

recomended-action-logoRecommended Actions

Apply the latest update from the vendor.
http://virtuemart.net/download

Telemetry logoTelemetry

Coverage

IPS (Regular DB)
IPS (Extended DB)

Version Updates

Date Version Detail
2019-06-07 14.628 Severity:high:medium
2019-02-01 14.540 Name:Joomla.
VirtueMart.
Extension.
Order.
Vtip.
XSS:Joomla!.
VirtueMart.
Extension.
Order.
Vtip.
XSS