[SECURITY-L] Joomla! Security News
CSIRT - UNICAMP
security em unicamp.br
Qua Set 9 09:15:17 -03 2015
----- Forwarded message from Security Centre <noreply+feedproxy em google.com> -----
Date: Wed, 09 Sep 2015 12:09:19 +0000
From: Security Centre <noreply+feedproxy em google.com>
To: security em unicamp.br
Subject: Joomla! Security News
Security Centre
///////////////////////////////////////////
[20150908] - Core - XSS Vulnerability
Posted: 08 Sep 2015 07:25 PM PDT
http://feedproxy.google.com/~r/JoomlaSecurityNews/~3/CARbJMNz3LY/626-20150908-core-xss-vulnerability.html?utm_source=feedburner&utm_medium=email
Project: Joomla!
SubProject: CMS
Severity: Low
Versions: 3.4.0 through 3.4.3
Exploit type: XSS Vulnerability
Reported Date: 2015-August-18
Fixed Date: 2015-September-08
CVE Number: requested
Description
Inadequate escaping leads to XSS vulnerability in login module.
Affected Installs
Joomla! CMS versions 3.4.0 through 3.4.3
Solution
Upgrade to version 3.4.4
Contact
The JSST at the Joomla! Security Center.
Reported By: cfreer
--
You are subscribed to email updates from "Security Centre."
To stop receiving these emails, you may unsubscribe now: https://feedburner.google.com/fb/a/mailunsubscribe?k=KMmfqcC9uaW9DoC4WZhxYWXnZ24
Email delivery powered by Google.
Google Inc., 1600 Amphitheatre Parkway, Mountain View, CA 94043,
United States
----- End forwarded message -----
Mais detalhes sobre a lista de discussão SECURITY-L