CVEs-PoC/2011/CVE-2011-3595.md

### [CVE-2011-3595](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-3595)
![](https://img.shields.io/static/v1?label=Product&message=Joomla!&color=blue)
![](https://img.shields.io/static/v1?label=Version&message=%3C%3D%201.7.0%20&color=brightgreen)
![](https://img.shields.io/static/v1?label=Vulnerability&message=XSS&color=brightgreen)

### Description

Multiple Cross-site Scripting (XSS) vulnerabilities exist in Joomla! through 1.7.0 in index.php in the search word, extension, asset, and author parameters.

### POC

#### Reference
- http://yehg.net/lab/pr0js/advisories/joomla/core/%5Bjoomla_1.7.0-stable%5D_cross_site_scripting%28XSS%29
- https://www.openwall.com/lists/oss-security/2011/10/04/7

#### Github
No PoCs found on GitHub currently.