Advanced Search

Search Only:

Total: 46 results found.
Search Keyword php
Page 2 of 3
If you've ever had the need to load the Joomla! framework inside an external, non-Joomla! PHP script (say, when using Jumi), you can use this handy script to load the necessary files to allow you to use ...
... = In order to resolve this, I dove into the notification script at administrator/components/com_virtuemart/notify.php to see how it was determining what constituted a "fraudulent" IP ...
...  JomSocial's applications are echoed in the template using the following: <?php echo $content; ?> Since this is just echoing text, I figured with some creative coding, I could pull the Wall ...
Ahem, Yours is short and doesn't use an extra function call, but does it also strip newlines and tabs? Also, looking now at the PHP manual for trim, it seems I missed NUL and vertical tab: http: ...
... $query; $avatar = parent::_getList( $query, 0, 99999 ); return $avatar; } But the $avatar isn't returning anything. Where am I going wrong? My query string works in phpMyAdmin to return ...
... and as far as I can tell that parameter is an integer value. To plug this hole, I simply changed line 41 of components/com_lyftenbloggie/models/lyftenbloggie.php to use JRequest's getInt() method instead ...
... Tags [img][/img] Path Disclosure: Profile View 'id' parameter Passing non-numeric values for the 'id' parameter of the profile page results ...
webee 1.1.1, a Joomla commenting plugin, suffers from multiple vulnerabilities. SQL Injection The 'articleId' is not sanitized. index2.php?option=com_webeecomment&task=default&articleId=999 union ...
... I needed to get the class that generates the menu item select, which was done by including it in my view.html.php: include_once(JPATH_ROOT.DS.'libraries'.DS.'joomla'.DS.'html'.DS.'parameter'.DS.'element'.DS.'menuitem.php'); Also ...
... an install file for my component in component.install.php. I then made sure to add these files to the component's xml install file under the administrator files section. <administration> ... <files ...
...  REQUIRES: magic_quotes_gpc OFF index.php?option=com_fbb&func=advsearch&q=&exactname=1&childforums=1&limitstart=0&searchuser=%' AND SUBSTRING(@@version,1,1)=5 -- ' If MySQL is version 5, this will ...
... "div" ); for (var i = 0; i < elements.length; i++) { if ( elements[i].className == "componentheading" ) { elements[i].innerHTML = "<?php echo htmlentities($cat->name); ...
... secret stored in configuration.php. During the token check, the submitted token can then be verified against what is stored in the database without a direct string comparison. Granted, an insecure extension ...
... The next step was to add the necessary items to my form. In the view's template, I changed my form tag to have a specific class and submit function: <form action="index.php" method="post" name="adminForm" ...
Textpattern 4.0.8, a PHP based CMS, has a unique approach to allowing user styled input: Textile. This BBCode-type markup allows users to easily style comments. It is also vulnerable to XSS. A few ...
... onclick='javascript:alert(String.fromCharCode(88,83,83))']XSS[/td][/tr][/table] Blind SQL Injection /index.php?tmpl=component&option=com_joobb&view=search&searchwords=%' and SUBSTRING(@@version,1,1)=5 ...
... BBCode and the victim must be running a vulnerable browser. Stephan Slabihoud sent me this patched bbparser.php, which seems to fix the issue: <?php // ******************************************************************************************** // ...
I found a nice little exploit for WebAmoeba Ticket System 3.0.0, a Joomla help desk component. The vulnerability is with the BBCode library used to parse BBCode tags, as it does not strip javascript: urls ...
... be installed faster than his FTP transfer would take. Sure enough, it worked. Here's how: First, I created a file for him to upload to his server named 'getjoom.php': <?php echo shell_exec( 'wget ...
... that's needed for the lightbox. To do this, add the following line to the <head> section of your template: <?php JHTML::_('behavior.modal'); ?> Once that's done, it's possible to make any ...
Page 2 of 3

The Joomla!® name is used under a limited license from Open Source Matters in the United States and other countries. Jeff Channell is not affiliated with or endorsed by Open Source Matters or the Joomla!® Project.

Joomla Extensions