Joomla Security News

There are no translations available.

Joomla Security News

Below you will find the latest security news from Joomla.org's J.S.S.T. (Joomla Security Strike Team). It is imperitive for the security of your website and that of the server that you maintain your Joomla installation up to date with the latest release. If you require assistance in upgrading your website we are available to do this for you. Just visit our Joomla Upgrade page.

Joomla! Developer - Vulnerability News

Not only is Joomla! easy to use, but it is easy to add extra functionality through a flexible and powerful developer framework. The Joomla! Framework allows you to build exceptional extensions for Joomla! including components, modules, plugins, templates and language packs.

  • — [20100704] - Core - XSS Vulnerabillitis in Back End

       (Jueves 15 de Julio de 2010 12:04)

    • Project: Joomla!
    • SubProject: All
    • Severity: Medium
    • Versions: 1.5.19 and all previous 1.5 releases
    • Exploit type: XSS Injection
    • Reported Date: 2010-June-1
    • Fixed Date: 2010-July-15

    Description

    Back-end user can inject Javascript in various administrator screens.

    Affected Installs

    All 1.5.x installs prior to and including 1.5.19 are affected.

    Solution

    Upgrade to the latest Joomla! version (1.5.20 or later)

    Reported by Mesut Timur.

    Contact

    The JSST at the Joomla! Security Center.

  • — [20100703] - Core - XSS Vulnerabillitis in Back End

       (Jueves 15 de Julio de 2010 12:04)

    • Project: Joomla!
    • SubProject: All
    • Severity: Medium
    • Versions: 1.5.19 and all previous 1.5 releases
    • Exploit type: XSS Injection
    • Reported Date: 2010-June-8
    • Fixed Date: 2010-July-15

    Description

    Back-end user can inject Javascript in various administrator screens.

    Affected Installs

    All 1.5.x installs prior to and including 1.5.19 are affected.

    Solution

    Upgrade to the latest Joomla! version (1.5.20 or later)

    Reported by José Antonio Vázquez González

    Contact

    The JSST at the Joomla! Security Center.

  • — [20100702] - Core - XSS Vulnerabillitis in Back End

       (Jueves 15 de Julio de 2010 12:04)

    • Project: Joomla!
    • SubProject: All
    • Severity: Medium
    • Versions: 1.5.19 and all previous 1.5 releases
    • Exploit type: XSS Injection
    • Reported Date: 2010-June-8
    • Fixed Date: 2010-July-15

    Description

    Back-end user can inject Javascript in various administrator screens.

    Affected Installs

    All 1.5.x installs prior to and including 1.5.19 are affected.

    Solution

    Upgrade to the latest Joomla! version (1.5.20 or later)

    Reported by José Antonio Vázquez González

    Contact

    The JSST at the Joomla! Security Center.

 
Banner

LiveZilla Live Help

Affordable Hosting Sign-Up


carbon_negative

Español(Spanish Formal International)English (United Kingdom)

You are here:

Joomla Announcements

carbonzero

Is Joomla right for you?

sam-1Over the years our team has accumulated extensive knowledge on Joomla's practical use as a Content Management System in multiple usage environments. Is Joomla really right for you? Let's answer that question first. Contact us today and take that first step.

Our experience with Joomla will be put to work for you the moment you contact us.
footer_logos