Monday, 20 September 2010 11:32
This has been addressed in the coming v2.4. Additionally, the above vulnerability is only possible only if you allow comment editing permissions to members in your site, usually "trusted" people. Thanks
This is a comment on "K2 2.3 Persistent XSS Vulnerability"

The Joomla!® name is used under a limited license from Open Source Matters in the United States and other countries. Jeff Channell is not affiliated with or endorsed by Open Source Matters or the Joomla!® Project.

Joomla Extensions