Frontpage

I am totally relaxed!

Because I know Joomlamonitor is working for me. Whenever my website is down, I get an instant alert (and a copy goes to my web-host too!)
Do you wanna try?

Searching for files online? File search system - best decision. Seop for search engine optimization. Now you can build a website by yourself.

[20110203] - Core - XSS Vulnerabilities

Project: Joomla!
SubProject: All
Severity: Moderate
Versions: 1.6.0
Exploit type: Cross Site Scripting
Reported Date: 2011-January-23
Fixed Date: 2011-March-07

Description

Inadequate checking for double URI encoding leads to XSS vulnerabilities.

Affected Installs

Joomla! Version 1.6.0 installs.

Solution

Upgrade to the latest Joomla! version (16.1 or later)

Reported by Hoyt LLC Research

Contact

The JSST at the Joomla! Security Center.

Read full...

Author:

< Prev		Next >

More Articles in This Category
[20110401] - Core - Information Disclosure [20120306] - Core - Information Disclosure [20120305] - Core - Password Change [20110202] - Core - Path Disclosure [20120308] - Core - XSS Vulnerability	[20110701] - XSS Vulnerability [20120307] - Core - Information Disclosure [20110301] - Core - Information Disclosure [20100501] - Core - XSS Vulnerabilities in Back End [20090604] - Core - Frontend XSS - HTTP_REFERER not properly filtered