Joomla sent the following today:
http://developer.joomla.org/security/news.html
Quote
Joomla! Security News
[20121101] - Core - Clickjacking
Posted: 08 Oct 2012 02:09 PM PDT
Project: Joomla!
SubProject: All
Severity: Moderate
Versions: 3.0.1 and 3.0.0.
Exploit type: Clickjacking vulnerability
Reported Date: 2012-October-15
Fixed Date: 2012-November-08
CVE Number: CVE-2012-5827
Description
Inadequate protection leads to clickjacking vulnerability.
Affected Installs
Joomla! version 3.0.1 and 3.0.0.
Solution
Upgrade to version 3.0.2
Reported by Ajay Singh Negi
Contact
The JSST at the Joomla! Security Center.