oCERT-2010-002 Joomla input sanitization errors (XSS)
Joomla, an open source content management system, suffers from a cross-site scripting (XSS) vulnerability.
Joomla <= 1.5.19
Joomla >= 1.5.20
Credit: vulnerability report and PoC received from Mesut Timur <mesut [at] mavitunasecurity [dot] com>.
2010-06-01: vulnerability report received
2010-06-01: contacted Joomla Security Team
2010-07-15: Joomla advisory published
2010-07-20: oCERT advisory published
2010-07-21: assigned CVE