Re: Joomla core = 3.1.5 reflected XSS vulnerability
Please note also this will only affect 3.1.4 and 3.1.5. There are not official 3.1.2 and 3.1.3 releases and the problem file was added after the 3.1.1 release.
Joomla core = 3.1.5 reflected XSS vulnerability
- Original release date: August 05, 2013 - Discovered by: Emilio Pinna (Application Security Analyst at Abinsula) - Contact: (emilio (dot) pinn (at) gmail (dot) com) - Severity: 4.3/10 (Base CVSS Score)
Re: Joomla core = 3.1.5 reflected XSS vulnerability
It would have been more prudent, to public this vulnerability AFTER patch update (J! 3.1.6) is released - and not before.
