Unrated severityNVD Advisory· Published Mar 5, 2018· Updated Sep 17, 2024

CVE-2018-7717

Description

The htmlImageAddTitleAttribute function in sige.php in the Kubik-Rubik Simple Image Gallery Extended (SIGE) extension 3.2.3 for Joomla! has XSS via a crafted image header, as demonstrated by the Caption-Abstract header object in a JPEG file. This is fixed in 3.3.1.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

Kubik Rubik/Joomla Image Gallery Extendedinferred2 versions
<=3.2.3+ 1 more
- (no CPE)range: <=3.2.3
- (no CPE)range: <=3.2.3

Patches

Vulnerability mechanics

References

debugtrap.com/2018/03/01/joomla_sige_xss/mitrex_refsource_MISC

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.001
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000