AP Portfolio [mod_ap_portfolio], 3.3.1 and below, XSS (Cross Site Scripting)

Extension includes vulnerable JS library prettyPhoto

Vulnerability fixed in version 3.3.2

Update notice: http://aplikko.com/joomla-extensions/ap-portfolio

 

please contact the developer for more information.