Joomla! versions 1.6.5 and below suffer from a cross site scripting vulnerability.
4a02bc6a0b3a648183829132a928faa71371aae04716c35f03f753193221f26e
Joomla! Developer Network - Security News
///////////////////////////////////////////
[20110701] - XSS Vulnerability
Posted: 19 Jul 2011 09:15 PM PDT
http://feedproxy.google.com/~r/JoomlaSecurityNews/~3/4KDvSjZRIvs/357-20110701-xss-vulnerability.html?utm_source=feedburner&utm_medium=email
Project: Joomla!
SubProject: All
Severity: Medium
Versions: 1.6.5 and all earlier 1.6.x versions
Exploit type: XSS
Reported Date: 2011-July-11
Fixed Date: 2011-July-19
Description
Inadequate escaping leads to XSS vulnerability.
Affected Installs
Joomla! version 1.6.5 and all earlier 1.6.x versions
Solution
Upgrade to the latest Joomla! version (1.7.0 or later)
Reported by Aung Khant
Contact
The JSST at the Joomla! Security Center.