Description

The Kunena forum extension for Joomla suffers from multiple SQL injection and cross-site scripting vulnerabilities because it fails to sufficiently sanitize user-supplied data. The vulnerabilities affect Kunena v3.0.5 and earlier.

Remediation

Upgrade to the latest version of Kunena Forum (this problems was fixed in version 3.0.6).

References

Related Vulnerabilities