Phil-A-Form v1.2 And Lower - SQL Injection (Current version is secure!) - Joomla! Forum - community, help and support
the current version of phil-a-form v1.6.3 - , secure (as far know).
we have been alerted having security vulnerability in version 1.2 (over year old!) sql injection allows hacker gain md5 hash of admin password on joomla site.
we know many customers still running phil-a-form v1.2 vulnerable, in our tests managed information sites tested!
we aware version 1.2 of phil-a-form available on warez/illegal sites.
only versions less v1.2 vulnerable. please upgrade phil-a-form if not running latest version.
this reason making sure joomla components kept up-to-date!
we have been alerted having security vulnerability in version 1.2 (over year old!) sql injection allows hacker gain md5 hash of admin password on joomla site.
we know many customers still running phil-a-form v1.2 vulnerable, in our tests managed information sites tested!
we aware version 1.2 of phil-a-form available on warez/illegal sites.
only versions less v1.2 vulnerable. please upgrade phil-a-form if not running latest version.
this reason making sure joomla components kept up-to-date!
added vulnerable extensions list
http://help.joomla.org/component/option ... temid,268/
http://help.joomla.org/component/option ... temid,268/
Comments
Post a Comment