Joomla! Security News |
|
|||||||||
Joomla! Security News |
26 Apr 2015, 06:13 PM
Post
#1
|
|
Administrator Group: Admin Posts: 111561 Joined: 3-June 05 From: Athens, Greece Member No.: 1 Zodiac Sign: Gender: |
Joomla! Security News
[20140904] - Core - Denial of Service Posted: 30 Sep 2014 12:00 PM PDT
Inadequate checking allowed the potential for a denial of service attack. Affected Installs Joomla! CMS versions 2.5.4 through 2.5.25, 3.2.5 and earlier 3.x versions, 3.3.0 through 3.3.4 Solution Upgrade to version 2.5.26, 3.2.6, or 3.3.5 Contact The JSST at the Joomla! Security Center. Reported By: Johannes Dahse [20140903] - Core - Remote File Inclusion Posted: 30 Sep 2014 12:00 PM PDT
Inadequate checking allowed the potential for remote files to be executed. Affected Installs Joomla! CMS versions 2.5.4 through 2.5.25, 3.2.5 and earlier 3.x versions, 3.3.0 through 3.3.4 Solution Upgrade to version 2.5.26, 3.2.6, or 3.3.5 Additional Details Please refer to AkeebaBackup.com for additional details. Contact The JSST at the Joomla! Security Center. Reported By: Johannes Dahse [20140902] - Core - Unauthorised Logins Posted: 23 Sep 2014 12:00 PM PDT
Inadequate checking allowed unauthorised logins via LDAP authentication. Affected Installs Joomla! CMS versions 2.5.24 and earlier 2.5.x versions, 3.2.4 and earlier 3.x versions, 3.3.0 through 3.3.3 Solution Upgrade to version 2.5.25, 3.2.5, or 3.3.4 Contact The JSST at the Joomla! Security Center. Reported By: Matthew Daley [20140901] - Core - XSS Vulnerability Posted: 23 Sep 2014 12:00 PM PDT
Inadequate escaping leads to XSS vulnerability in com_media. Affected Installs Joomla! CMS versions 3.2.0 through 3.2.4 and 3.3.0 through 3.3.3 Solution Upgrade to version 3.2.5 or 3.3.4 Contact The JSST at the Joomla! Security Center. Reported By: Dingjie (Daniel) Yang [20140301] - Core - SQL Injection Posted: 06 Mar 2014 12:30 PM PST
Inadequate escaping leads to SQL injection vulnerability. Affected Installs Joomla! CMS versions 3.1.0 through 3.2.2 Solution Upgrade to version 3.2.3 Contact The JSST at the Joomla! Security Center. Reported By: ?? [20140302] - Core - XSS Vulnerability Posted: 06 Mar 2014 12:30 PM PST
Inadequate escaping leads to XSS vulnerability in com_contact. Affected Installs Joomla! CMS versions 3.1.2 through 3.2.2 Solution Upgrade to version 3.2.3 Contact The JSST at the Joomla! Security Center. Reported By: ?? [20140303] - Core - XSS Vulnerability Posted: 06 Mar 2014 12:30 PM PST
Inadequate escaping leads to XSS vulnerability. Affected Installs Joomla! CMS versions 2.5.18 and earlier 2.5.x versions, 3.2.2 and earlier 3.x versions Solution Upgrade to version 2.5.19 or 3.2.3 Contact The JSST at the Joomla! Security Center. Reported By: JSST [20140304] - Core - Unauthorised Logins Posted: 06 Mar 2014 12:30 PM PST
Inadequate checking allowed unauthorised logins via GMail authentication. Affected Installs Joomla! CMS versions 2.5.18 and earlier 2.5.x versions, 3.2.2 and earlier 3.x versions Solution Upgrade to version 2.5.19 or 3.2.3 Contact The JSST at the Joomla! Security Center. Reported By: Stefania Gaianigo [20131103] Core XSS Vulnerability Posted: 06 Nov 2013 10:47 AM PST
Inadequate filtering leads to XSS vulnerability in com_contact. Affected Installs Joomla! version 2.5.14 and earlier 2.5.x versions; and version 3.1.5 and earlier 3.0.x versions. Solution Upgrade to version 2.5.16, 3.1.6 or 3.2. Contact The JSST at the Joomla! Security Center. Reported By: Osanda Malith Jayathissa [20131102] Core XSS Vulnerability Posted: 06 Nov 2013 10:47 AM PST
Inadequate filtering leads to XSS vulnerability in com_contact, com_weblinks, com_newsfeeds. Affected Installs Joomla! version 2.5.14 and earlier 2.5.x versions; and version 3.1.5 and earlier 3.0.x versions. Solution Upgrade to version 2.5.16, 3.1.6 or 3.2. Contact The JSST at the Joomla! Security Center. Reported By: Osanda Malith Jayathissa [20131101] Core XSS Vulnerability Posted: 06 Nov 2013 10:47 AM PST
Inadequate filtering leads to XSS vulnerability in com_contact. Affected Installs Joomla! version 2.5.14 and earlier 2.5.x versions; and version 3.1.5 and earlier 3.0.x versions. Solution Upgrade to version 2.5.16, 3.1.6 or 3.2. Contact The JSST at the Joomla! Security Center. Reported By: Osanda Malith Jayathissa -------------------- |
|
Lo-Fi Version | Time is now: 19th April 2024 - 05:04 AM |
Skin and Graphics by Dan Ellis and Anubis. Hosting by Forums & More © 2005-2011. |