Print Page - VM reported as Vulnerable to SQLi attack in the JED

Title: VM reported as Vulnerable to SQLi attack in the JED
Post by: HarryWales on April 06, 2012, 11:52:17 AM

VM 2.0.2 has now been listed as "Vulnerable" in the Joomla Extensions Directory (JED)

Please see: http://extensions.joomla.org/extensions/e-commerce/shopping-cart/129

and

http://docs.joomla.org/Vulnerable_Extensions_List#virtuemart_2.0.2

This is BAD news for us all - let's hope 2.0.3 can solve this and get the JED to approve VM2 again.

Title: Re: VM reported as Vulnerable to SQLi attack in the JED
Post by: Milbo on April 06, 2012, 15:21:24 PM

It is mainly a false alert. All the hacks do not work. They are possible exploits, no completed ones. But anyway it is solved already.

VirtueMart Forum

VirtueMart 2 + 3 + 4 => General Questions => Topic started by: HarryWales on April 06, 2012, 11:52:17 AM