The folks at Joomla have released a security update that eliminates a problem where a back-end user can inject javascript in various administrator screens. It also solves a problem introduced in version v1.5.16 that could cause "unexpected" behaviour in a Joomla site after an unsuccessful plugin installation explained here at the JoomlaTools website.
A1Media.ca
Small Business Website Specialists
