SECUNIA ADVISORY ID:
SA42534

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/42534/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=42534

RELEASE DATE:
2010-12-09
DESCRIPTION:
Some vulnerabilities have been reported in the JXtended Comments
component for Joomla!, which can be exploited by malicious people to
conduct cross-site scripting attacks.

Certain unspecified input is not properly sanitised before being
returned to the user. This can be exploited to execute arbitrary HTML
and script code in a user's browser session in context of an affected
site.

The vulnerabilities are reported in versions prior to 1.3.1.

SOLUTION:
Update to version 1.3.1.

PROVIDED AND/OR DISCOVERED BY:
Reported by the vendor.

ORIGINAL ADVISORY:
http://jxtended.com/blog/releases/375-jxtended-comments-131-stable-released.html
 

SECUNIA ADVISORY ID:
SA42430

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/42430/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=42430

RELEASE DATE:
2010-12-02
DESCRIPTION:
Multiple vulnerabilities have been reported in sh404SEF component for
Joomla!, which can be exploited by malicious people to conduct
cross-site scripting and SQL injection attacks

1) Certain unspecified input is not properly sanitised before being
returned to the user. This can be exploited to execute arbitrary HTML
and script code in a user's browser session in context of an affected
site.

2) Certain unspecified input is not properly sanitised before being
used in SQL queries. This can be exploited to manipulate SQL queries
by injecting arbitrary SQL code.

The vulnerabilities are reported in versions prior to 2.1.8.777.

SOLUTION:
Update to 2.1.8.777 or later.

PROVIDED AND/OR DISCOVERED BY:
The vendor credits Jeff Channel.

ORIGINAL ADVISORY:
sh404SEF:
http://dev.anything-digital.com/Forum/Announcements/9100-Urgent-sh404SEF-security-release-Joomla-1.5/

 

Joomla! ได้ประกาศเวอร์ชันใหม่ออกมาแล้ว คือ Joomla 1.6 เบต้า 15 (ดาวน์โหลดที่นี่) หมายเหตุ: รุ่นเบต้านี้ยังไม่สามารถทำงานได้กับส่วนเสริมอื่นๆ ไม่แนะนำให้ใช้ทำเว็บไซต์จริง ซึ่งออกมาเพื่อที่จะใช้สำหรับการทดลอง และประเมินผลเท่านั้น

ตั้งแต่ Joomla 1.6 beta 14 ถูกปล่อยออกมาเมื่อวันที่ 15 พฤษจิกายน ทางทีมได้ทำการแก้ไขไปแล้ว 84 ปัญหา จากที่ได้มีการรายงานเข้ามา โดยปิดหัวข้อไปได้ 33 ประเด็น และตอนนี้เรายังมี 4 ประเด็นที่จะทำการปิดให้ทันการปล่อย 1.6 Release Candidate 1 ดังนั้นความก้าวหน้าในรุ่นนี้ จะเกี่ยวข้องกับการแก้ไขให้ทำงานได้ดียิ่งขึ้นจากความพยายามของทีม Joomla! Bug Squad ดังนั้นเราขอบคุณสำหรับการทำงานหนักของทีม ซึ่งทำให้การทำงานของระบบมั่นคงขึ้น!

คุณสามารถดูรายละเอียดของการเปลี่ยนแปลงในรุ่นนี้จากในไฟล์ CHANGELOG.php

ถัดจากนี้ไป จะมีอะไร?

SECUNIA ADVISORY ID:
SA42324

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/42324/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=42324

RELEASE DATE:
2010-11-23
DESCRIPTION:
A vulnerability has been discovered in the Jimtawl component for
Joomla!, which can be exploited by malicious people to disclose
sensitive information.

Input passed via the "task" parameter to index.php (when "option" is
set to "com_jimtawl" and "Itemid" is set) is not properly verified
before being used to include files. This can be exploited to include
arbitrary files from local resources via directory traversal
sequences and URL-encoded NULL bytes.

The vulnerability is confirmed in version 1.0.2. Other versions may
also be affected.

SOLUTION:
Edit the source code to ensure that input is properly verified.

PROVIDED AND/OR DISCOVERED BY:
Mask_magicianz

 

SECUNIA ADVISORY ID:
SA42292

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/42292/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=42292

RELEASE DATE:
2010-11-20
DESCRIPTION:
A vulnerability has been reported in  the Mosets Tree component for
Joomla!, which can be exploited by malicious people to conduct
cross-site request forgery attacks.

The application allows users to perform certain actions via HTTP
requests without making proper validity checks to verify the
requests. This can be exploited to e.g. change the template by
tricking a privileged user into visiting a malicious web site while
being logged-in to the application.

The vulnerability is reported in version 2.1.6. Prior versions may
also be affected.

SOLUTION:
Update to version 2.1.7.

PROVIDED AND/OR DISCOVERED BY:
jdc

ORIGINAL ADVISORY:
Mosets Tree:
http://forum.mosets.com/showthread.php?t=16820
 

SECUNIA ADVISORY ID:
SA42284

VERIFY ADVISORY:
Secunia.com
http://secunia.com/advisories/42284/
Customer Area (Credentials Required)
https://ca.secunia.com/?page=viewadvisory&vuln_id=42284

RELEASE DATE:
2010-11-19
DESCRIPTION:
A vulnerability has been reported in the Maian Media Silver component
for Joomla!, which can be exploited by malicious people to conduct SQL
injection attacks.

Input passed via the "cat" parameter to index.php (when "option" is
set to "com_maianmedia" and "view" is set to "music") is not properly
sanitised before being used in SQL queries. This can be exploited to
manipulate SQL queries by injecting arbitrary SQL code.

SOLUTION:
An update has been made available by the vendor.

PROVIDED AND/OR DISCOVERED BY:
v3n0m

ORIGINAL ADVISORY:
Are Times:
http://www.aretimes.com/index.php?option=com_content&view=category&layout=blog&id=40&Itemid=113