News:

Looking for documentation? Take a look on our wiki

Main Menu

VM reported as Vulnerable to SQLi attack in the JED

Started by HarryWales, April 06, 2012, 11:52:17 AM

Previous topic - Next topic
Print
Go Down Pages1
User actions

HarryWales

April 06, 2012, 11:52:17 AM
VM 2.0.2 has now been listed as "Vulnerable" in the Joomla Extensions Directory (JED)

Please see: http://extensions.joomla.org/extensions/e-commerce/shopping-cart/129

and

http://docs.joomla.org/Vulnerable_Extensions_List#virtuemart_2.0.2

This is BAD news for us all - let's hope 2.0.3 can solve this and get the JED to approve VM2 again.

Milbo

#1
April 06, 2012, 15:21:24 PM
It is mainly a false alert. All the hacks do not work. They are possible exploits, no completed ones. But anyway it is solved already.
Should I fix your bug, please support the VirtueMart project and become a member
______________________________________
Extensions approved by the core team: http://extensions.virtuemart.net/
Print
Go Up Pages1
User actions