Menu

[20110409] – Core – Clickjacking

April 15th, 2011

  • Project: Joomla!
  • SubProject: All
  • Severity: Medium
  • Versions: 1.6.1 and 1.6.0
  • Exploit type: Clickjacking
  • Reported Date: 2011-March-30
  • Fixed Date: 2011-April-14

Description

Inadequate protection leads to clickjacking vulnerability.

Affected Installs

Joomla! version 1.6.1 and 1.6.0 versions

Solution

Upgrade to the latest Joomla! version (1.6.2 or later)

Reported by Aung Khant, YGN Ethical Hacker Group

Contact

The JSST at the Joomla! Security Center.