- Core - XSS Vulnerability
- Project: Joomla!
- SubProject: All
- Severity: Low
- Versions: 2.5.3 and all earlier 2.5.x versions
- Exploit type: XSS Vulnerability
- Reported Date: 2012-February-3
- Fixed Date: 2012-April-2
Inadequate filtering in update manager leads to XSS vulnerability.
Joomla! versions 2.5.3 and all earlier 2.5.x versions
Upgrade to version 2.5.4
Reported by Alex Andreae
The JSST at the Joomla! Security Center.