|
Full Disclosure
mailing list archives
Fwd: Joomla! Security News
From: Henri Salo <henri () nerv fi>
Date: Wed, 20 Jul 2011 16:15:42 +0300
Joomla! Developer Network - Security News
///////////////////////////////////////////
[20110701] - XSS Vulnerability
Posted: 19 Jul 2011 09:15 PM PDT
http://feedproxy.google.com/~r/JoomlaSecurityNews/~3/4KDvSjZRIvs/357-20110701-xss-vulnerability.html?utm_source=feedburner&utm_medium=email
Project: Joomla!
SubProject: All
Severity: Medium
Versions: 1.6.5 and all earlier 1.6.x versions
Exploit type: XSS
Reported Date: 2011-July-11
Fixed Date: 2011-July-19
Description
Inadequate escaping leads to XSS vulnerability.
Affected Installs
Joomla! version 1.6.5 and all earlier 1.6.x versions
Solution
Upgrade to the latest Joomla! version (1.7.0 or later)
Reported by Aung Khant
Contact
The JSST at the Joomla! Security Center.
_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/
 By Date 
By Thread
Current thread:
- Fwd: Joomla! Security News Henri Salo (Jul 20)
| 
