[High Alert] Joomla Ext Joomnik

	Welcome, Guest. Please login or register. Did you miss your activation email? Login with username, password and session length	May 24, 2012, 09:12:40 AM

Web Hosting Forum | Lunarpages > Advanced Lunarpages Assistance > Lunarpages Security Center > Topic: [High Alert] Joomla Ext Joomnik - SQL Injection

Pages: [1] Go Down

« previous next »

Author

Topic: [High Alert] Joomla Ext Joomnik - SQL Injection (Read 1217 times)

Dragos

Administrator
Spacescooter Operator

Offline

Posts: 30

[High Alert] Joomla Ext Joomnik - SQL Injection

« on: May 31, 2011, 10:07:36 AM »

Executive Summary: The Joomla Ext. Joomnik Gallery Component is vulnerable to SQL Injection Attacks. The effected version is 0.9 and possibly others.

Technical Details: The "album" parameter to Index.php does not properly sanitize its input.

Recommendation: ontact the Developer for an updated version or discontinue use in favor of another Gallery Component.


	Logged

--
Dragos Gabriel Fedorovici
JSA Supervisor - System Administrator Team
Add2Net Inc., LunarPages Division

Pages: [1] Go Up

« previous next »

Jump to:

Share |

Powered by SMF 1.1.14 | SMF © 2006-2011, Simple Machines LLC
Lunarpages Web Hosting | Website Templates | Blog Hosting

Loading...