[20110308] - Core - CSRF Vulnerability E-mail
Saturday, 05 March 2011 04:51
Project: Joomla! SubProject: All Severity: Low Versions: 1.6.0 Exploit type: Cross Site Request Forgery Reported Date: 2011-March-04 Fixed Date: 2011-March-07 Description Inadequate token checking leads to cross-site request forgery vulnerability. Affected Installs Joomla! version 1.6.0. Solution Upgrade to the latest Joomla! version (1.6.1 or later) Reported by Marius van Rijnsoever Contact The JSST at the Joomla! Security Center.

Read more: http://feeds.joomla.org/~r/JoomlaSecurityNews/~3/3PLOZaZCAfI/339-20110308-core-csrf-vulnerability.html