[20110404] - Core - XSS Vulnerabilities E-mail
Friday, 15 April 2011 07:54
Project: Joomla! SubProject: All Severity: Low Versions: 1.6.1 and 1.6.0 Exploit type: XSS Vulnerabilities Reported Date: 2011-April-06 Fixed Date: 2011-April-14 Description Unescaped values in administrative modal windows causes potential XSS vulnerabilities. Affected Installs Joomla! version 1.6.1 and 1.6.0 versions Solution Upgrade to the latest Joomla! version (1.6.2 or later) Reported by Klas Berli? Contact The JSST at the Joomla! Security Center.

Read more: http://feeds.joomla.org/~r/JoomlaSecurityNews/~3/u9eIwRSwBMs/343-20110404-core-xss-vulnerabilities.html