CVE-2009-1940

Cross-site scripting (XSS) vulnerability in the administrator panel in the com_users core component for Joomla! 1.5.x through 1.5.10 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.

We have discovered 267,947 live websites that are affected by CVE-2009-1940.

Test my site



Affected Software

Product  Joomla
Category Content Management System
Vulnerable Domains267,947 live websites (96.47% of Joomla install base)
Vulnerable Versions
  • from 0 through 1.5.10
Vulnerable Versions Count2 versions ( 1.19% of all versions)



Details

  • Published - Jun 6, 2009
  • Updated - Aug 7, 2024

CVE-2009-1940 usage by Country

United States15,491 websites


Italy66,442 websites
Australia24,762 websites
GB16,627 websites
Germany13,695 websites
Russia13,446 websites
Poland12,567 websites
Netherlands11,465 websites
Iran9,176 websites
South Africa8,913 websites

CVE-2009-1940 usage by TLD

.com65,207 websites
.it43,627 websites
.com.au17,007 websites
.ru11,539 websites
.pl8,985 websites
.co.uk8,953 websites
.org7,372 websites
.nl6,810 websites
.de6,476 websites
.net5,782 websites

Vulnerable Versions

Vulnerable versions are highlighted in red

Websites affected by CVE-2009-1940

Top websites that are affected by CVE-2009-1940. Please click on the "Contact us" link to get more information.
DomainCountryRankContacts
*****************.de Germany*,***
*******.**.ca Canada*,***
**************.********.com United States**,***
***********.com Italy**,***
***********.**.za South Africa**,***
********.com Serbia**,***
***************.com Italy**,***
********.com United States**,***
*********.com GB**,***
*****.**.uk GB**,***
See full domain list

FAQ

A total of 267,947 websites have been identified as vulnerable to CVE-2009-1940, discovered through global website indexing conducted by WebTechSurvey.
Joomla is susceptible to CVE-2009-1940 vulnerability.
Joomla versions before, and including, 1.5.10 are vulnerable to CVE-2009-1940.