frei-chat2.0
http://code.google.com/p/frei-chat/downloads/list xss vulnerability 230710 Dev announcement to fix 2.1.2 for FreiChat [Those having CB installed]AND...
Answers v2.3beta
Multiple Vulnerabilities http://extensions.joomla.org/extensions/communication/forum/12652 180610
RSMonials
http://www.rswebsols.com/downloads/category/14-download-rsmonials-all?download=23%3Adownload-rsmonials-component XSS Exploit 190610 Believed to be 1.5.1 version
RSComments 1.0.0
Persistent XSS NOTE: ONLY executes in backend! 190610 Developer update announcement 210610
EasyBlog
http://stackideas.com/products/easyblog.html xss (new report) july 10,2010 developer reported fix available on site
Health & Fitness Stats
http://joomla-extensions.instantiate.co.uk/jcomponents/healthstats Persistent XSS Vulnerability july 10,2010
Rapid Recipe
http://www.rapid-source.com Persistent XSS Vulnerability last known fix version 1.7.2 july 10,2010
mysms
http://www.willcodejoomlaforfood.de/ Upload Vulnerability july 10,2010 290710 released the version 1.5.12.
QContacts
http://extensions.joomla.org/extensions/contacts-and-feedback/contact-details/4811 Version: 1.0.4 reported, current version 1.0.6 220710 Devleoper states unproven report and no POC
IXXO Cart
http://www.php-shop-system.com/ SQLi LFI XSS Vulnerability