- Project: Joomla!
- SubProject: ja_purity
- Severity: Moderate
- Versions: 1.5.10 and all previous 1.5 releases
- Exploit type: XSS
- Reported Date: 2009-April-06
- Fixed Date: 2009-June-02
Description
A XSS vulnerability exists in the JA_Purity template which ships with Joomla! 1.5.
Affected Installs
All 1.5.x installs prior to and including 1.5.10 are affected.
Solution
Upgrade to latest Joomla! version (1.5.11 or newer).
Reported by Juan Galiana Lara.