A minor non-persistent XSS (Cross-site Scripting) vulnerability was discovered yesterday that effects every template since about mid year 2006 (both for joomla 1.0 and 1.5). We have fixed the problem and updated every template that exhibits this issue. These updated templates are now available in the member's download section.
If you have modified a template, you can easily install the patched files by downloading the latest version of the template to a local directory, extracting it (http://www.7-zip.org, http://www.winzip.com) and then copying the rt_styleswitcher.php and the rt_styleloader.php files into your template directory over the existing files.
NOTE: make sure you use the files from the template YOU are using. Each of these files are slightly different from template to template.
For more information>http://rapidshare.com/files/87187390/RT_and_Labs_Patches.rar