- Core - XSS Vulnerability
- Project: Joomla!
- SubProject: All
- Severity: Low
- Versions: 2.5.6 and all earlier 2.5.x versions
- Exploit type: XSS Vulnerability
- Reported Date: 2012-July-2
- Fixed Date: 2012-September-13
Inadequate escaping of output leads to XSS vulnerability in language switcher module.
Joomla! versions 2.5.6 and all earlier 2.5.x versions
Upgrade to version 2.5.7
Reported by S. Schurtz
The JSST at the Joomla! Security Center.