Developer Network™

Download
Launch

Security Announcements

[20110604] - XSS Vulnerability

  • Project: Joomla!
  • SubProject: All
  • Severity: Medium
  • Versions: 1.6.3 and all earlier 1.6.x versions
  • Exploit type: XSS
  • Reported Date: 2011-May-25
  • Fixed Date: 2011-June-27

Description

Inadequate filtering leads to XSS vulnerability.

Affected Installs

Joomla! version 1.6.3 and all earlier 1.6.x versions

Solution

Upgrade to the latest Joomla! version (1.6.4 or later)

Contact

The JSST at the Joomla! Security Centre.

Reported By: Aung Khant