Thursday, 07 October 2010 16:47
The guys over at YGN posted a video today of a 0-day Joomla! 1.5.20 XSS flaw. I've taken a look and have a quick fix that should prevent exploitation.
Last Updated on Thursday, 07 October 2010 22:04
Monday, 04 October 2010 19:52
Today, I threw together a site and released a new project into the wild: Biziant Sentry.
Biziant Sentry is currently in alpha and is not recommended for use on production sites! I've released this in the hopes that the community will come together and help make this project the best that it can be!
Monday, 04 October 2010 00:00
SOBI2's admin panel doesn't explicitly check for _POST requests, nor does it have a nonce.
Last Updated on Monday, 04 October 2010 13:22
Thursday, 30 September 2010 17:05
There is a file upload vulnerability in version 1.8.8 and earlier of JomSocial, the popular community extension for Joomla!.
Last Updated on Thursday, 30 September 2010 17:43
The Joomla!® name is used under a limited license from Open Source Matters in the United States and other countries. Jeff Channell is not affiliated with or endorsed by Open Source Matters or the Joomla!® Project.