Vulnerable Extensions List 0210
(→Notes) |
m (removing {{tl|inuse}} template, this article has not been edited since Feb 2010 and it is showing up in actively editing category) |
||
| (3 intermediate revisions by 2 users not shown) | |||
| Line 1: | Line 1: | ||
| − | |||
| − | |||
== February 2010 Reported Vulnerable Extensions == | == February 2010 Reported Vulnerable Extensions == | ||
<startFeed /> | <startFeed /> | ||
| Line 23: | Line 21: | ||
|style="background:red; color:white" | ''' Not Known''' | |style="background:red; color:white" | ''' Not Known''' | ||
|- | |- | ||
| − | |style=" | + | |style="#cef2e0; color:black" | |
== [http://extensions.joomla.org/extensions/calendars-a-events/events/95 JEvent] == | == [http://extensions.joomla.org/extensions/calendars-a-events/events/95 JEvent] == | ||
| SQLi | | SQLi | ||
|reported Jan 29 | |reported Jan 29 | ||
| − | |style="background: | + | |style="background:#cef2e0; color:black" | ''' fixes in version 1.5.3.b''' |
|- | |- | ||
|style="background:red; color:white" | | |style="background:red; color:white" | | ||
| Line 84: | Line 82: | ||
For instructions on how to [http://forum.joomla.org/viewtopic.php?f=432&t=478030 receive the feed.] | For instructions on how to [http://forum.joomla.org/viewtopic.php?f=432&t=478030 receive the feed.] | ||
---- | ---- | ||
| − | + | ||
| − | + | ||
---- | ---- | ||
Latest revision as of 16:38, 2 February 2013
Contents |
[edit] February 2010 Reported Vulnerable Extensions
Please check with the extension publisher in case of any questions over the security of their product. Report Vulnerable extensions either in the jforum:432 security topic clearly marked with the first word in the title being Vulnerable Report where the security moderators or JSST team will respond. For a guide to the codes
| Extension | Details | Date Added | Extension Update Link & Date |
|---|---|---|---|
[edit] Jvideodirect |
SQLi | Jan 29 | Not Known |
[edit] JEvent |
SQLi | reported Jan 29 | fixes in version 1.5.3.b |
[edit] Item3 |
3a | 3b | 3c |
[edit] Item4 |
This list is change protected, for updates or additions Mandville or lafrance
[edit] Codes used
SQLi - SQL injection wikipedia
LFI - Local File Inclusion scribd
RFI - Remote file inclusion wikipedia
DT - Directory Traversal wikipedia
[edit] Developers - How to get yourself removed from the from the VEL
Resolved items will be removed after a suitable period and not on resolution
Please solve the issues and:
- If JED listed
Attach the new zip file at your actual JED listing.
Change the extension version at JED listing.
Contact the JED by mail with a notice and ask them republish your listing.
- If not JED listed.
Inform us by PM of the link to your resolution notice on your website.
NB We do not fix, we report
[edit] Notes
We try and put the newest item to the top of the list but it is not always possible. List as discussed in jtopic:455746 by PhilD editing by Mandville For instructions on how to receive the feed.
