Turns out there is a small bug in FireFox (fixed with the 3.6 release that triggers an XSS flaw in Plone which then starts Java VM if you have it installed. 

So I have been a web developer/producer/sysadmin since Mosaic became Netscape. I worked for AT&T, taught FrontPage and DreamWeaver, learned about content management systems, search engines Gopher, WAIS, VLib (kind of the first directory it was setup by Tim Berners Lee), Excite, Lycos and Alta Vista through Google, watched W3C use XHTML as the standard for presentation layer code and finally realized I was no longer a sysadmin, programmer, graphic designer or web designer, I had become a business owner with younger, more talented people working with me.

ProductCart v4 received official PA-DSS validation from the PCI Security Standards Council in October of 2009. PA-DSS stands for Payment Application Data Security Standards. “The goal of PA-DSS is to help software vendors and others develop secure payment applications that do not store prohibited data, such as full magnetic stripe, CVV2 or PIN data, and ensure their payment applications support compliance with the PCI DSS.”

Monday, 02 November 2009 01:03
 
Project: Joomla!
SubProject: All
Severity: Low
Versions: 1.5.14 and all previous 1.5 releases
Exploit type: Extension Version Disclosure
Reported Date: 2009-October-13
Fixed Date: 2009-Nov-03

MadTek patches vulnerable Joomla! 1.5.14 installs on LINUX and Windows 2003.