Joomla Component Mosets Tree 2.1.5 Shell Upload Vulnerability

Posted in Joomla!
2010-09-13 16:46:53 +0000 UTC

Mosets Tree suffers from a shell upload vulnerabilty caused by improperly checking the filetype of uploaded images.

K2 2.3 Persistent XSS Vulnerability

Posted in Joomla!
2010-09-11 17:08:28 +0000 UTC

K2 v2.3, the popular Joomla! CCK extension, suffers from persistent XSS vulnerabilities in its comment facility.

I Hacked The JED

Posted in Joomla!
2010-09-11 00:25:39 +0000 UTC

Over the Labor Day weekend I managed to upload and execute arbitrary PHP code on the Joomla! Extensions Directory. That site has been patched, but the patch is not yet publicly available. As soon as it is, I'll post the dirty details of the exploit I used to hack!

Also, please note that I was given permission to do so and nothing of any value was harmed! - Hacked by jdc

UPDATE: THE JED HAS BEEN PATCHED AND IS NO LONGER VULNERABLE! This was confirmed patched BEFORE this was posted, and WAS NOT EXPLOITED PREVIOUSLY! Nothing was harmed and nothing is at risk!

JComments Persistent XSS

Posted in Joomla!
2010-09-05 18:55:54 +0000 UTC

JComments suffers from a persistent XSS vulnerability in the way it handles certain BBCodes.

CompojoomComment 4.1.5 Multiple Vulnerabilities

Posted in Joomla!
2010-09-01 20:48:02 +0000 UTC

Since the CompojoomComment Hacking Contest is now over, and I was the only winner, I figured I'd go ahead and share my winning entries. These vulnerabilities are present in CompojoomComment 4.1.5, and are all patched in the latest (4.1.7 at the time of this writing).

Add LinkedTube as a Video Provider in JomSocial

Posted in Joomla!
2010-08-19 08:05:00 +0000 UTC

I had a request recently from Woman Poker Player to add the video site LinkedTube to the list of available video providers in JomSocial. After a bit of investigation, I ended up developing a solution based on the core YouTube library (as LinkedTube is really merely a wrapper for YouTube videos). I've been given permission to post this here for the benefit of the community, and I've sent it to Azrul as well for possible inclusion in the JomSocial core.

Hack CompojoomComment? Ok!

Posted in Joomla!
2010-08-04 23:55:33 +0000 UTC

Compojoom, developers of CompojoomComment, opened up a contest to hack their comment component. After being alerted to the contest by my good friend Lafrance, I took a peek and had a working XSS exploit within 16 minutes, and after a bit of refining I managed to really mess things up. ;)

JNoGuest 1.0.4

Posted in Joomla!
2010-08-01 20:10:01 +0000 UTC

Today, JNoGuest 1.0.4 was released. This version adds support for JomSocial registration (including JomSocial Profile Types), fixes a couple bugs, and has some minor changes to JNoGuest's operation.

Silent on the Home Front

Posted in Other
2010-07-06 06:16:20 +0000 UTC

Okay, it's been a while and things have been seemingly standing still. I just got back from another trip to Michigan. I've signed an NDA and don't want to say much, but I've been doing jQuery frontend work for a company that develops cloud services used by the likes of Ford Motors and ROUSH Performance. It's been pretty interesting so far to say the least!

On the home front, JMyLife is going through a bit of a core rewrite, though I have a testing release of 1.0.13 brewing. It's not a very big release this time around, as I've been getting everything laid out for 1.1.0. I've got a rough alpha of 1.1.0 in the works, which is going to be much more flexible in terms of addressing the positioning of all of the core elements by taking advantage of Joomla's core plugin architecture, allowing new elements to be created easily by other developers.

JNoGuest 1.0.3

Posted in Joomla!
2010-06-16 03:40:54 +0000 UTC

I've updated JNoGuest to version 1.0.3. No bug fixes, but I've added AlphaRegistration bypass as an option.