Security Advisory
CVE-2015-4072
CVE vulnerability detail — eXtreme Datacenter Security Operations
Description
Multiple cross-site scripting (XSS) vulnerabilities in the Helpdesk Pro plugin before 1.4.0 for Joomla! allow remote attackers to inject arbitrary web script or HTML via vectors related to name and message.