Unrated severityNVD Advisory· Published Jun 5, 2009· Updated Jun 16, 2026
CVE-2009-1939
CVE-2009-1939
Description
Cross-site scripting (XSS) vulnerability in the JA_Purity template for Joomla! 1.5.x through 1.5.10 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
15cpe:2.3:a:joomla:joomla:1.5.0_beta:*:*:*:*:*:*:*+ 13 more
- cpe:2.3:a:joomla:joomla:1.5.0_beta:*:*:*:*:*:*:*
- cpe:2.3:a:joomla:joomla:1.5.0_beta1:*:*:*:*:*:*:*
- cpe:2.3:a:joomla:joomla:1.5.0_beta2:*:*:*:*:*:*:*
- cpe:2.3:a:joomla:joomla:1.5.0_rc1:*:*:*:*:*:*:*
- cpe:2.3:a:joomla:joomla:1.5.1:*:*:*:*:*:*:*
- cpe:2.3:a:joomla:joomla:1.5.10:*:*:*:*:*:*:*
- cpe:2.3:a:joomla:joomla:1.5.2:*:*:*:*:*:*:*
- cpe:2.3:a:joomla:joomla:1.5.3:*:*:*:*:*:*:*
- cpe:2.3:a:joomla:joomla:1.5.4:*:*:*:*:*:*:*
- cpe:2.3:a:joomla:joomla:1.5.5:*:*:*:*:*:*:*
- cpe:2.3:a:joomla:joomla:1.5.6:*:*:*:*:*:*:*
- cpe:2.3:a:joomla:joomla:1.5.7:*:*:*:*:*:*:*
- cpe:2.3:a:joomla:joomla:1.5.8:*:*:*:*:*:*:*
- cpe:2.3:a:joomla:joomla:1.5.9:*:*:*:*:*:*:*
Patches
Vulnerability mechanics
References
7- www.securityfocus.com/bid/35189nvdExploitPatch
- developer.joomla.org/security/news/296-20090602-core-japurity-xss.htmlnvdVendor Advisory
- secunia.com/advisories/35278nvdVendor Advisory
- osvdb.org/54870nvd
- www.joomla.org/announcements/release-news/5235-joomla-1511-security-release-now-available.htmlnvd
- www.vupen.com/english/advisories/2009/1497nvd
- exchange.xforce.ibmcloud.com/vulnerabilities/50922nvd
News mentions
0No linked articles in our index yet.