|
Joomla(CMS) framework version 1.0.11 stable is susceptible to a CSRF attack which can compromise the super admin account and the whole application.=0D
The CSRF attack can be performed on the framework to =0D
change the super admin account password because the change password functionality does not asks for the current password.=0D
=0D
Other than this flaw there are multiple places where XSS have been identified.