It would have been more prudent, to public this vulnerability AFTER patch update (J! 3.1.6) is released - and not before.
- Joomla core <= 3.1.5 reflected XSS vulnerability Emilio Pinna
- Re: Joomla core <= 3.1.5 reflected XSS vulnerabil... no
- Re: Joomla core <= 3.1.5 reflected XSS vulnerabil... michael . babker