Mosets Tree 2.1.6 Template Overwrite CSRF
Thursday, 18 November 2010 13:06

Moset's Tree <= 2.1.6 for Joomla! does not use anti-CSRF tokens in its admin forms.

Last Updated on Thursday, 18 November 2010 13:13
Read more...
Temporary Joomla 1.5.20 XSS Hotfix
Thursday, 07 October 2010 16:47

The guys over at YGN posted a video today of a 0-day Joomla! 1.5.20 XSS flaw. I've taken a look and have a quick fix that should prevent exploitation.

Last Updated on Thursday, 07 October 2010 22:04
Read more...
Biziant Sentry Alpha Release
Monday, 04 October 2010 19:52

Today, I threw together a site and released a new project into the wild: Biziant Sentry.

Biziant Sentry is currently in alpha and is not recommended for use on production sites! I've released this in the hopes that the community will come together and help make this project the best that it can be!

Read more...
SOBI2 2.9.3.1 Code Injection CSRF Exploit
Monday, 04 October 2010 00:00

SOBI2's admin panel doesn't explicitly check for _POST requests, nor does it have a nonce.

Last Updated on Monday, 04 October 2010 13:22
Read more...
JomSocial 1.8.8 Shell Upload Vulnerability
Thursday, 30 September 2010 17:05

There is a file upload vulnerability in version 1.8.8 and earlier of JomSocial, the popular community extension for Joomla!.

Last Updated on Thursday, 30 September 2010 17:43
Read more...
More Articles...
Page 2 of 16

Featured Extensions

$25.00
$1.00
FREE
You Save: $1.00
$3.00
FREE
You Save: $3.00
$10.00
FREE
You Save: $10.00

Latest Articles

Most Popular

The Joomla!® name is used under a limited license from Open Source Matters in the United States and other countries. Jeff Channell is not affiliated with or endorsed by Open Source Matters or the Joomla!® Project.

Santorum
Joomla Extensions