Search

Advanced Search

Search Only:



Total: 46 results found.
Search Keyword php
Page 2 of 3
21.
(Code/Joomla!)
If you've ever had the need to load the Joomla! framework inside an external, non-Joomla! PHP script (say, when using Jumi), you can use this handy script to load the necessary files to allow you to use ...
22.
(Code/Joomla!)
... = 216.113.188.202. In order to resolve this, I dove into the notification script at administrator/components/com_virtuemart/notify.php to see how it was determining what constituted a "fraudulent" IP ...
23.
(Code/Joomla!)
...  JomSocial's applications are echoed in the template using the following: <?php echo $content; ?> Since this is just echoing text, I figured with some creative coding, I could pull the Wall ...
24.
(Comments/All)
Ahem, Yours is short and doesn't use an extra function call, but does it also strip newlines and tabs? Also, looking now at the PHP manual for trim, it seems I missed NUL and vertical tab: http: ...
25.
(Comments/All)
... $query; $avatar = parent::_getList( $query, 0, 99999 ); return $avatar; } But the $avatar isn't returning anything. Where am I going wrong? My query string works in phpMyAdmin to return ...
26.
(Code/Joomla!)
... and as far as I can tell that parameter is an integer value. To plug this hole, I simply changed line 41 of components/com_lyftenbloggie/models/lyftenbloggie.php to use JRequest's getInt() method instead ...
27.
(Code/Joomla!)
... Tags [img]http://victim-site.com/index.php?option=com_user&task=logout[/img] Path Disclosure: Profile View 'id' parameter Passing non-numeric values for the 'id' parameter of the profile page results ...
28.
(Code/Joomla!)
webee 1.1.1, a Joomla commenting plugin, suffers from multiple vulnerabilities. SQL Injection The 'articleId' is not sanitized. index2.php?option=com_webeecomment&task=default&articleId=999 union ...
29.
(Code/Joomla!)
... I needed to get the class that generates the menu item select, which was done by including it in my view.html.php: include_once(JPATH_ROOT.DS.'libraries'.DS.'joomla'.DS.'html'.DS.'parameter'.DS.'element'.DS.'menuitem.php'); Also ...
30.
(Code/Joomla!)
... an install file for my component in component.install.php. I then made sure to add these files to the component's xml install file under the administrator files section. <administration> ... <files ...
31.
(Code/Joomla!)
...  REQUIRES: magic_quotes_gpc OFF index.php?option=com_fbb&func=advsearch&q=&exactname=1&childforums=1&limitstart=0&searchuser=%' AND SUBSTRING(@@version,1,1)=5 -- ' If MySQL is version 5, this will ...
32.
(Code/Joomla!)
... "div" ); for (var i = 0; i < elements.length; i++) { if ( elements[i].className == "componentheading" ) { elements[i].innerHTML = "<?php echo htmlentities($cat->name); ...
33.
(Code/Joomla!)
... secret stored in configuration.php. During the token check, the submitted token can then be verified against what is stored in the database without a direct string comparison. Granted, an insecure extension ...
34.
(Code/Joomla!)
... The next step was to add the necessary items to my form. In the view's template, I changed my form tag to have a specific class and submit function: <form action="index.php" method="post" name="adminForm" ...
35.
(Code/PHP)
Textpattern 4.0.8, a PHP based CMS, has a unique approach to allowing user styled input: Textile. This BBCode-type markup allows users to easily style comments. It is also vulnerable to XSS. A few ...
36.
(Code/Joomla!)
... onclick='javascript:alert(String.fromCharCode(88,83,83))']XSS[/td][/tr][/table] Blind SQL Injection /index.php?tmpl=component&option=com_joobb&view=search&searchwords=%' and SUBSTRING(@@version,1,1)=5 ...
37.
(Code/Joomla!)
... BBCode and the victim must be running a vulnerable browser. Stephan Slabihoud sent me this patched bbparser.php, which seems to fix the issue: <?php // ******************************************************************************************** // ...
38.
(Code/Joomla!)
I found a nice little exploit for WebAmoeba Ticket System 3.0.0, a Joomla help desk component. The vulnerability is with the BBCode library used to parse BBCode tags, as it does not strip javascript: urls ...
39.
(Code/Joomla!)
... be installed faster than his FTP transfer would take. Sure enough, it worked. Here's how: First, I created a file for him to upload to his server named 'getjoom.php': <?php echo shell_exec( 'wget ...
40.
(Code/Joomla!)
... that's needed for the lightbox. To do this, add the following line to the <head> section of your template: <?php JHTML::_('behavior.modal'); ?> Once that's done, it's possible to make any ...
Page 2 of 3

The Joomla!® name is used under a limited license from Open Source Matters in the United States and other countries. Jeff Channell is not affiliated with or endorsed by Open Source Matters or the Joomla!® Project.

Santorum
Joomla Extensions