CVE-2013-5583

Name of the Vulnerable Software and Affected Versions Joomla! version 3.1.5

Description A cross-site scripting (XSS) issue exists, allowing remote attackers to inject arbitrary web script or HTML. This is achieved via the lang parameter in the example.php file of the idna convert library.

Recommendations For Joomla! version 3.1.5, consider restricting access to the vulnerable example.php file in the idna convert library to minimize the risk of exploitation. Avoid using the lang parameter in the affected endpoint until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.