oss-sec mailing list archives

CVE request: joomla before 1.5.18

From: Hanno Böck <hanno () hboeck de>
Date: Sat, 29 May 2010 14:50:06 +0200

http://developer.joomla.org/security/news/314-20100501-core-xss-
vulnerabilities-in-back-
end.html?utm_source=feedburner&utm_medium=email&utm_campaign=Feed%3A+JoomlaSecurityNews+%28Joomla!
+Security+News%29

Description

Back-end user can inject javascript in various administrator screens.

Affected all versions below 1.5.18.

-- 
Hanno Böck              Blog:           http://www.hboeck.de/
GPG: 3DBD3B20           Jabber/Mail:    hanno () hboeck de

http://schokokeks.org - professional webhosting

Attachment: signature.asc
Description: This is a digitally signed message part.

Current thread:

CVE request: joomla before 1.5.18 Hanno Böck (May 29)
- Re: CVE request: joomla before 1.5.18 Josh Bressers (Jun 01)