Home Home Joomla Security News [20101101] - Core - XSS Vulnerabilities

kenlapz.ORG - House of Joomla Designer

[20101101] - Core - XSS Vulnerabilities

Friday, 05 November 2010 14:00 Joomla Security Infos
E-mail Print PDF
  • Project: Joomla!
  • SubProject: All
  • Severity: Low
  • Versions: 1.5.21 and all previous 1.5 releases
  • Exploit type: SQL Injection - Information Disclosure
  • Reported Date: 2010-October-05
  • Fixed Date: 2010-November-04

Description

Inadequate filtering of request variables causes database errors.

Affected Installs

All 1.5.x installs prior to and including 1.5.21 are affected.

Solution

Upgrade to the latest Joomla! version (1.5.22 or later)

Reported by YGN Ethical Hacker Group

Contact

The JSST at the Joomla! Security Center.

Read more: http://feeds.joomla.org/~r/JoomlaSecurityNews/~3/4MtMh_0iC4A/323-20101101-core-sqli-info-disclosurevulnerabilities.html

 

Members Panel

  • user LOGIN


- Do not have an account? Register
- Lost your Password? Resend Password
- Lost your Confirmation Link? Resend Confirmation Link

Partner Website

kenlapz.ORG - House of Joomla Designer Lunarpages.com Web Hosting AyamBangkok.COM - Portal dan Komunitas Penggemar Ayam Bangkok Indonesia AyamLaga.COM - Portal & Komunitas ayam laga indonesia

Latest Joomla Tips and Tricks

Popular Joomla Tips and Tricks

Members Statistic

Latest Member : livestar888
Members Online : 0
Today : 0 Registers
This Week : 0 Registers
This Month : 10 Registers

Partner Websites


Website Statistics

Members : 19137
Content : 1354
Web Links : 9
Content View Hits : 1425796