Unrated severityNVD Advisory· Published Jan 6, 2010· Updated Jun 16, 2026
CVE-2009-4575
CVE-2009-4575
Description
Cross-site scripting (XSS) vulnerability in the Q-Personel (com_qpersonel) component 1.0.2 RC2 for Joomla! allows remote attackers to inject arbitrary web script or HTML via the personel_sira parameter in a sirala action to index.php.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- cpe:2.3:a:qproje:com_qpersonel:1.2:rc2:*:*:*:*:*:*
- Range: =1.0.2 RC2
Patches
Vulnerability mechanics
References
5- www.exploit-db.com/exploits/10738nvdExploit
- www.securityfocus.com/bid/37503nvdExploit
- secunia.com/advisories/37897nvdVendor Advisory
- www.osvdb.org/61354nvd
- exchange.xforce.ibmcloud.com/vulnerabilities/55128nvd
News mentions
0No linked articles in our index yet.