Description
The cross-site scripting (XSS) countermeasures in class.inputfilter.php in Joomla! 1.0.7 allow remote attackers to cause a denial of service via a crafted mosmsg parameter to index.php with a malformed sequence of multiple tags, as demonstrated using "<<>AAA<><>", possibly due to nested or empty tags.
Remediation
References
Related Vulnerabilities
WordPress 2.0.5 Invalid CSRF Token Cross-Site Scripting Vulnerability (0.6.2 - 2.0.5)
Drupal Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2008-0272)
WordPress Plugin JetWidgets For Elementor Multiple Cross-Site Scripting Vulnerabilities (1.0.8)
WordPress Plugin Power Zoomer Arbitrary File Upload (1.2)
WordPress Plugin Contact Form by ContactMe.com Cross-Site Scripting (2.3)