Joomla Jumi component version 3.0.5 suffers from a cross site scripting vulnerability.