Typographical error leads to XSS vulnerability in language search component.
Joomla! version 3.0.0.
Upgrade to version 3.0.1
Reported by Jeff Channell
The JSST at the Joomla! Security Center.
Coding errors led to information disclosure in some situations.
Joomla! version 3.0.2 and earlier 3.0.x versions.
Upgrade to version 3.0.3.
Reported by Stergios Kolios
The JSST at the Joomla! Security Center.
Method of encoding search terms led to possible information disclosure.
Joomla! version 3.0.2 and earlier 3.0.x versions; version 2.5.8 and earlier 2.5.x versions.
Upgrade to version 3.0.3 or 2.5.9.
Reported by Egidio Romano
The JSST at the Joomla! Security Center.
Inadequate protection leads to clickjacking vulnerability.
Joomla! version 2.5.7 and all earlier 2.5.x versions.
Upgrade to version 2.5.8
Reported by Ajay Singh Negi
The JSST at the Joomla! Security Center.
Inadequate protection leads to clickjacking vulnerability.
Joomla! version 3.0.1 and 3.0.0.
Upgrade to version 3.0.2
Reported by Ajay Singh Negi
The JSST at the Joomla! Security Center.
Undefined variable caused information disclosure in some situations.
Joomla! version 3.0.2 and earlier 3.0.x versions.
Upgrade to version 3.0.3.
Reported by Mark Dexter
The JSST at the Joomla! Security Center.
Inadequate escaping of output leads to XSS vulnerability in language switcher module.
Joomla! versions 2.5.6 and all earlier 2.5.x versions
Upgrade to version 2.5.7
Reported by S. Schurtz
The JSST at the Joomla! Security Center.
Inadequate escaping of output leads to XSS vulnerability.
Joomla! versions 2.5.6 and all earlier 2.5.x versions
Upgrade to version 2.5.7
Reported by Janek Vind and Antoine Cervoise
The JSST at the Joomla! Security Center.
Inadequate checking leads to possible user privilege escalation.
Joomla! versions 2.5.4 and all earlier 2.5.x versions
Upgrade to version 2.5.5
Reported by Nils Rückmann
The JSST at the Joomla! Security Center.
Inadequate filtering leads SQL error and information disclosure.
Joomla! versions 2.5.4 and all earlier 2.5.x versions
Upgrade to version 2.5.5
Reported by Jakub Galczyk
The JSST at the Joomla! Security Center.
Insufficient randomness leads to password reset vulnerability.
Joomla! versions 1.5.25 and all earlier 1.5.x versions
Upgrade to version 1.5.26
Reported by George Argyros and Aggelos Kiayias
The JSST at the Joomla! Security Center.
Inadequate permission checking allows unauthorised viewing of administrative back end information.
Joomla! versions 1.5.25 and all earlier 1.5.x versions
Upgrade to version 1.5.26
Reported by Cyrille Barthelemy
The JSST at the Joomla! Security Center.
Insufficient randomness leads to password reset vulnerability.
Joomla! versions 2.5.2, 2.5.1, 2.5.0, and all 1.7.x and 1.6.x versions
Upgrade to version 2.5.3
Reported by George Argyros and Aggelos Kiayias
The JSST at the Joomla! Security Center.
Programming error allows privilege escalation in some cases.
Joomla! versions 2.5.2, 2.5.1, 2.5.0, and all 1.7.x and 1.6.x versions
Upgrade to version 2.5.3
Reported by Jeff Channel
The JSST at the Joomla! Security Center.
Inadequate escaping leads to SQL injection vulnerability.
Joomla! version 2.5.1, 2.5.0, 1.7.4, and all earlier 1.7.x versions
Upgrade to version 2.5.2
Reported by Ching Shiong Sow, Stratsec
The JSST at the Joomla! Security Center.
Inadequate filtering leads to XSS vulnerability.
Joomla! version 2.5.1 and 2.5.0.
Upgrade to version 2.5.2
Reported by Phil Purviance
The JSST at the Joomla! Security Center.
Inadequate validation leads to information disclosure in administrator.
Joomla! version 2.5.0, 1.7.4, and all earlier 1.7.x versions
Upgrade to version 1.7.5 or 2.5.1 or higher
Reported by Jakub Galczyk
The JSST at the Joomla! Security Center.
On some servers the error log could be read by unauthorised users.
Joomla! version 1.7.4 and all earlier 1.7.x versions
Upgrade to version 2.5.1 or 1.7.5 or higher
Reported by Alain Rivest
The JSST at the Joomla! Security Center.
Inadequate validation leads to path disclosure in administrator.
Joomla! version 2.5.0, 1.7.4, and all earlier 1.7.x versions
Upgrade to version 2.5.1 or 1.7.5 or higher
Reported by Jakub Galczyk
The JSST at the Joomla! Security Center.
Inadequate filtering leads to information disclosure.
Joomla! version 1.7.3 and all earlier versions
Upgrade to version 1.7.4 or 2.5.0 or higher
Reported by Jean-Marie Simonet
The JSST at the Joomla! Security Center.
Inadequate filtering leads to XSS vulnerability.
Joomla! version 1.7.3 and all earlier 1.7 and 1.6 versions
Upgrade to version 1.7.4 or 2.5.0 or higher
Reported by David Jardin
The JSST at the Joomla! Security Center.
Inadequate filtering leads to information disclosure.
Joomla! version 1.7.3 and all earlier versions
Upgrade to version 1.7.4 or 2.5.0 or higher
Reported by Erwan Peton – Intrinsec
The JSST at the Joomla! Security Center.
Inadequate filtering leads to XSS vulnerability.
Joomla! version 1.7.3 and all earlier versions
Upgrade to version 1.7.4 or 2.5.0 or higher
Reported by Ankita Kapadia
The JSST at the Joomla! Security Center.
53 queries. 9.75 mb Memory usage. 1.200 seconds.