Joomla! Core is prone to a clickjacking vulnerability. Successful exploitation will allow an attacker to compromise the affected application or obtain sensitive information; other attacks are also possible. Joomla! Core versions 2.5.x ranging from 2.5.0 and up to and including 2.5.7 are vulnerable.
Update to Joomla! Core version 2.5.8 or latest