Fabrikar Fabrik Component Reflected XSS Vulnerability

Fabrikar Fabrik Component Reflected XSS Vulnerability

CVE-2018-10727 · MEDIUM Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

Reflected Cross-Site Scripting (XSS) vulnerability in the fabrik_referrer hidden field in the Fabrikar Fabrik component through v3.8.1 for Joomla! allows remote attackers to inject arbitrary web script via the HTTP Referer header.

Learn more about our Web App Pen Testing.