|
نوشته شده توسط امیر حسین آستانه ها
|
|
پنجشنبه ، 14 خرداد 1388 ، 00:13 |
- Project: Joomla!
- SubProject: Site client
- Severity: Low
- Versions: 1.5.10 and all previous 1.5 releases
- Exploit type: XSS
- Reported Date: 2009-May-05
- Fixed Date: 2009-June-02
Description Some values were output from the database without being properly escaped. Most strings in question were sourced from the administrator panel. Affected Installs All 1.5.x installs prior to and including 1.5.10 are affected. Solution Upgrade to latest Joomla! version (1.5.11 or newer).
|
