XSS Security Vulnerability

You need to be logged in to view a user's profile.

Resolved XSS Security Vulnerability

Votes

Undo

geraint
Support Team
Announcements
Friday, 02 December 2011

An XSS (cross server scripting) security risk has been identified that affects all versions of JEvents since 1.5.0.

You should upgrade to the latest version of JEvents as soon as possible.

The latest version at the time of writing is 2.0.11.

Club member preview version 2.1.4 also includes this fix.

If you are continuing to use version 1.5.5 for some reason then version 1.5.6 is available from http://joomlacode.org/gf/project/jevent ... e_id=16213.

JEvents Club members can get priority forum support at the Support Forum. As well as access to a variety of custom JEvents addons and benefits. Join the JEvents club today!

Responses (0)

There are no replies made for this post yet.
Be one of the first to reply to this post!

Please login to post a reply

You will need to be logged in to be able to post a reply. Login using the form on the right or register an account if you are new here. Register Here »

Forgot Password?