oss-sec mailing list archives

Previous By Date Next
Previous By Thread Next

Re: CVE request: joomla before 1.5.18

From: Josh Bressers <bressers () redhat com>
Date: Tue, 1 Jun 2010 10:25:32 -0400 (EDT)

----- "Hanno Böck" <hanno () hboeck de> wrote:


http://developer.joomla.org/security/news/314-20100501-core-xss-
vulnerabilities-in-back-
end.html?utm_source=feedburner&utm_medium=email&utm_campaign=Feed%3A+JoomlaSecurityNews+%28Joomla!
+Security+News%29

Description

Back-end user can inject javascript in various administrator screens.

Affected all versions below 1.5.18.



Please use CVE-2010-1649.

Thanks.

-- 
    JB
Previous By Date Next
Previous By Thread Next

Current thread: