Intrusion Prevention

Joomla!.Core.LineFeed.Char.XSS.B

Description

This indicates an attack attempt against a Cross-Site Scripting (XSS) vulnerability in Joomla! CMS.
The vulnerability is due to inadequate filtering of line feed character which leads to XSS vulnerabilities in various components. A remote attacker may be able to exploit this to execute arbitrary script code within the context of the application, via a crafted request.

Affected Products

Joomla! CMS versions 1.5.0 through 3.7.2

Impact

System Compromise : Remote attackers can execute arbitrary script code within the context of the target user's browser

Recommended Actions

Upgrade to Joomla! CMS version 3.7.3
https://downloads.joomla.org/

CVE References

CVE-2017-7985