The Joomla! developers have released version 1.6.4 of their open source content management system. The latest version addresses a total of four security vulnerabilities. The vulnerabilities include two medium priority cross-site scripting issues, a low priority information disclosure hole caused by inadequate filtering. Versions up to and including 1.4 are reportedly affected. All users are advised to update as soon as possible. The CMS can be used to create anything from small web sites to corporate sites and large online applications.”]
Source: http://www.h-online.com/security/news/item/Joomla-1-6-update-closes-security-holes-1269264.html