|
Thursday, 23 September 2010 18:01 |
|
I know it shouldn't bother me, but I've got to ask - what's so hard about my last name?
|
|
Read more... [What's In A Name?]
|
|
Friday, 17 September 2010 21:28 |
|
My 4 year old drew the face, and I cut it out... here comes Hallowe'en!
|
|
Last Updated on Friday, 17 September 2010 21:40 |
|
Read more... [Æthan's Jack-O-Lantern]
|
|
Monday, 13 September 2010 11:46 |
|
Mosets Tree suffers from a shell upload vulnerabilty caused by improperly checking the filetype of uploaded images.
|
|
Last Updated on Thursday, 30 September 2010 17:34 |
|
Read more... [Joomla Component Mosets Tree 2.1.5 Shell Upload Vulnerability]
|
|
Saturday, 11 September 2010 12:08 |
|
K2 v2.3, the popular Joomla! CCK extension, suffers from persistent XSS vulnerabilities in its comment facility.
|
|
Last Updated on Thursday, 30 September 2010 17:34 |
|
Read more... [K2 2.3 Persistent XSS Vulnerability]
|
|
Friday, 10 September 2010 19:25 |
|
Over the Labor Day weekend I managed to upload and execute arbitrary PHP code on the Joomla! Extensions Directory. That site has been patched, but the patch is not yet publicly available. As soon as it is, I'll post the dirty details of the exploit I used to hack extensions.joomla.org!
Also, please note that I was given permission to do so and nothing of any value was harmed!
UPDATE: THE JED HAS BEEN PATCHED AND IS NO LONGER VULNERABLE! This was confirmed patched BEFORE this was posted, and WAS NOT EXPLOITED PREVIOUSLY! Nothing was harmed and nothing is at risk! |
|
Last Updated on Friday, 10 September 2010 20:47 |
|
Sunday, 05 September 2010 13:55 |
|
JComments 2.2.0.0 suffers from a persistent XSS vulnerability in the way it handles certain BBCodes.
|
|
Last Updated on Thursday, 30 September 2010 17:37 |
|
Read more... [JComments 2.2.0.0 Persistent XSS]
|
