The Joomla Project announced the release of Joomla! 1.0.14 RC1 [Daybreak]. This release fixes several security vulnerabilities:

• SECURITY [LOW]  Fixed XSS issue in com_search.
• SECURITY [LOW]  Fixed XSS issue in search results pages
• SECURITY [LOW]  Fixed multiple typos in back end com_content making array integer check ineffective
• SECURITY [HIGH] Fixed CSRF issue allowing portal compromise - Administrator components.

Link | Release Notes - Joomla! 1.0.14 RC1