Joomla! Developer Network™

Download
Launch

Security Announcements

[20120302] - Core - XSS Vulnerability

  • Project: Joomla!
  • SubProject: All
  • Severity: Moderate
  • Versions: 2.5.1 and 2.5.0
  • Exploit type: XSS Vulnerability
  • Reported Date: 2012-February-29
  • Fixed Date: 2012-March-05

Description

Inadequate filtering leads to XSS vulnerability.

Affected Installs

Joomla! version 2.5.1 and 2.5.0.

Solution

Upgrade to version 2.5.2

Contact

The JSST at the Joomla! Security Centre.

Reported By: Phil Purviance