FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

Joomla! -- Core - Multiple Vulnerabilities

Affected packages
2.5.* <= joomla2 <= 2.5.18
3.0.* <= joomla3 <= 3.2.2

Details

VuXML ID 9fa1a0ac-b2e0-11e3-bb07-6cf0490a8c18
Discovery 2014-03-01
Entry 2014-03-23
Modified 2014-04-30

The JSST and the Joomla! Security Center report:

[20140301] - Core - SQL Injection

Inadequate escaping leads to SQL injection vulnerability.

[20140302] - Core - XSS Vulnerability

Inadequate escaping leads to XSS vulnerability in com_contact.

[20140303] - Core - XSS Vulnerability

Inadequate escaping leads to XSS vulnerability.

[20140304] - Core - Unauthorised Logins

Inadequate checking allowed unauthorised logins via GMail authentication.

References

URL http://developer.joomla.org/security/578-20140301-core-sql-injection.html
URL http://developer.joomla.org/security/579-20140302-core-xss-vulnerability.html
URL http://developer.joomla.org/security/580-20140303-core-xss-vulnerability.html
URL http://developer.joomla.org/security/581-20140304-core-unauthorised-logins.html