The Joomla! Community Portal ™

JoomlaConnect

JoomlaConnect - Security English

(View All Languages)

Recent Posts

Spider Contacts 1.3.6 SQLI

  • Report this


Joomla Spider Contacts 1.3.6 SQL Injection

Keep reading about: Spider Contacts 1.3.6 SQLI...
 

Spider Contacts 1.3.6 SQLI

  • Report this


Joomla Spider Contacts 1.3.6 SQL Injection

Keep reading about: Spider Contacts 1.3.6 SQLI...
 

Spider Contacts 1.3.6 SQLI

  • Report this


Joomla Spider Contacts 1.3.6 SQL Injection

Developer update

http://web-dorado.com/products/joomla-contacts.html

Keep reading about: Spider Contacts 1.3.6 SQLI...
 

Virtuemart, lower than 2.6.8c,

  • Report this


Virtuemart, lower than 2.6.8c, user authentication bypass..

Latest version on JED 2.6.10

http://extensions.joomla.org/extensions/e-commerce/shopping-cart/129

Note developer has not provided information to vel.

 

Keep reading about: Virtuemart, lower than 2.6.8c,...
 

joomla spider video, 2.8.3, sqli

  • Report this


joomla spider video, 2.8.3, SQL Injection

UpdateNoticeURL
http://web-dorado.com/products/joomla-player.html

Keep reading about: joomla spider video, 2.8.3, sqli...
 

Akeeba backup

  • Report this


https://www.akeebabackup.com/home/news/1561-security-updates-august-2014.html

3.2.0-3.2.7, 3.3.0-3.3.13, 3.4.0-3.4.3, 3.5.x, 3.6.0-3.6.12, 3.7.x, 3.8.0-3.8.2, 3.9.x, 3.10.x, 3.11.0-3.11.3

 

3.2.0-3.2.7, 3.3.0-3.3.13, 3.4.0-3.4.3, 3.5.x, 3.6.0-3.6.12, 3.7.x, 3.8.0-3.8.2, 3.9.x, 3.10.x, 3.11.0-3.11.3.

 

 

 

 

 

Keep reading about: Akeeba backup...
 

myJoomla Service Connector

  • Report this


The myJoomla.com service connector had a minor information disclosure vulnerability, only effective in limited circumstances and hardly exploitable.

Keep reading about: myJoomla Service Connector...
 

Joomla Multicalendar, 5.3.2 and previous versions,

  • Report this


Joomla Multicalendar, 5.3.2 and previous versions, XSS (Cross Site Scripting)

UpdateNoticeURL
http://www.joomlacalendars.com/faq/multi-view-calendar-for-joomla#q39

Keep reading about: Joomla Multicalendar, 5.3.2 and previous versions,...
 

JChatSocial, 2.2 and lower

  • Report this


JChatSocial, 2.2 and lower, XSS (Cross Site Scripting)

Keep reading about: JChatSocial, 2.2 and lower...
 

Watchful Client (watchful.li extension), 1.9.0 and lower

  • Report this


Extension was not preventing execution of files outside of the framework, and therefore enabling potential unwanted information disclosure and other attacks using weak hash key implementation.

Update to version 1.9.1 : https://watchful.li/news/watchful-1-9-1-released.html

Keep reading about: Watchful Client (watchful.li extension), 1.9.0 and lower...
 


To get your feed included in JoomlaConnect, see our page on getting connected.