joomla's soup http://joomla.soup.io/ [lapaille] http://resources.joomla.org/directory/ {"tags":[],"type":"link","title":null,"source":"http://resources.joomla.org/directory/","body":"Joomla Resources Directory"} <p>Joomla Resources Directory</p> <p><a href="http://resources.joomla.org/directory/">http://resources.joomla.org/directory/</a></p>Mon, 06 Jul 2009 23:23:47 GMThttp://joomla.soup.io/post/22724090/http-resources-joomla-org-directoryurn:www-soup-io:1:22724090link [lapaille] joomla vulnerabilities {"tags":[],"type":"regular","title":"joomla vulnerabilities","source":null,"body":"\n\n\u003C!-- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - --\u003E\n\u003Ch3\u003E\n\t\u003Ca href=\"http://secu.be/Latest_OSVDB_Vulnerabilities/\"\u003ELatest OSVDB Vulnerabilities\u003C/a\u003E\n\u003C/h3\u003E\n\n\u003Cul\u003E\u003Cli class=\"item even\"\u003E\n\t\t\u003Ca href=\"http://secu.be/Latest_OSVDB_Vulnerabilities/2009/07/04/Boy_Scout_Advancement_Component_for_Joomla%21_index.php_id_Parameter_SQL_Injection\" title=\"Lien pour 'boy scout advancement component for joomla! index.php id parameter sql injection'\" class=\"plink\"\u003E\n\t\t\u003Cimg src=\"http://secu.be/themes/orange-slice/web/media/pl.gif\" alt=\"Lien pour 'Boy Scout Advancement Component for Joomla! index.php id Parameter SQL Injection'\" /\u003E\n\t\u003C/a\u003E\n\t\t\t\u003Ca href=\"http://secu.be/search.php#\"\u003E\n\t\t\u003Cimg src=\"http://secu.be/themes/orange-slice/web/media/edit.gif\" alt=\"edit\" /\u003E\n\t\u003C/a\u003E\n\t\t\t\u003Ch4\u003E\u003Ca href=\"http://osvdb.org/show/osvdb/1060615\"\u003EBoy Scout Advancement Component for Joomla! index.php id Parameter SQL Injection\u003C/a\u003E\u003C/h4\u003E\n\t\n\t\u003Ch5\u003ER\u00e9cup\u00e9r\u00e9: \u003Ca href=\"http://secu.be/Latest_OSVDB_Vulnerabilities/2009/07/\"\u003Ejuillet\u003C/a\u003E \u003Ca href=\"http://secu.be/Latest_OSVDB_Vulnerabilities/2009/07/04/\"\u003E 4th\u003C/a\u003E, 2009, 1:11am CEST\u003C/h5\u003E\n\t\t\t\u003Cdiv class=\"content\"\u003E\n\t\tBoy Scout Advancement Component for Joomla! index.php id Parameter SQL Injection\t\u003C/div\u003E\n\u003C/li\u003E\u003Cli class=\"item even\"\u003E\n\t\t\u003Ca href=\"http://secu.be/Latest_OSVDB_Vulnerabilities/2009/07/04/Database_Query_Component_for_Joomla%21_classes_DBQ_admin_common.class.php_mosConfig_absolute_path_Parameter_Remote_File_Inclusion\" title=\"Lien pour 'database query component for joomla! classes/dbq/admin/common.class.php mosconfig_absolute_path parameter remote file inclusion'\" class=\"plink\"\u003E\n\t\t\u003Cimg src=\"http://secu.be/themes/orange-slice/web/media/pl.gif\" alt=\"Lien pour 'Database Query Component for Joomla! classes/DBQ/admin/common.class.php mosConfig_absolute_path Parameter Remote File Inclusion'\" /\u003E\n\t\u003C/a\u003E\n\t\t\t\u003Ca href=\"http://secu.be/search.php#\"\u003E\n\t\t\u003Cimg src=\"http://secu.be/themes/orange-slice/web/media/edit.gif\" alt=\"edit\" /\u003E\n\t\u003C/a\u003E\n\t\t\t\u003Ch4\u003E\u003Ca href=\"http://osvdb.org/show/osvdb/1060624\"\u003EDatabase Query Component for Joomla! classes/DBQ/admin/common.class.php mosConfig_absolute_path Parameter Remote File Inclusion\u003C/a\u003E\u003C/h4\u003E\n\t\n\t\u003Ch5\u003ER\u00e9cup\u00e9r\u00e9: \u003Ca href=\"http://secu.be/Latest_OSVDB_Vulnerabilities/2009/07/\"\u003Ejuillet\u003C/a\u003E \u003Ca href=\"http://secu.be/Latest_OSVDB_Vulnerabilities/2009/07/04/\"\u003E 4th\u003C/a\u003E, 2009, 1:11am CEST\u003C/h5\u003E\n\t\t\t\u003Cdiv class=\"content\"\u003E\n\t\tDatabase Query Component for Joomla! classes/DBQ/admin/common.class.php mosConfig_absolute_path Parameter Remote File Inclusion\t\u003C/div\u003E\n\u003C/li\u003E\u003C/ul\u003E\n\u003C!-- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - --\u003E\n\u003Ch3\u003E\n\t\u003Ca href=\"http://secu.be/SecurityTracker_Vulnerability_Headlines/\"\u003ESecurityTracker Vulnerability Headlines\u003C/a\u003E\n\u003C/h3\u003E\n\n\u003Cul\u003E\u003Cli class=\"item even\"\u003E\n\t\t\u003Ca href=\"http://secu.be/SecurityTracker_Vulnerability_Headlines/2009/07/02/Joomla%21_Bugs_Permit_Cross-Site_Scripting_Attacks_and_Let_Remote_Users_Determine_the_Installation_Path\" title=\"Lien pour 'joomla! bugs permit cross-site scripting attacks and let remote users determine the installation path'\" class=\"plink\"\u003E\n\t\t\u003Cimg src=\"http://secu.be/themes/orange-slice/web/media/pl.gif\" alt=\"Lien pour 'Joomla! Bugs Permit Cross-Site Scripting Attacks and Let Remote Users Determine the Installation Path'\" /\u003E\n\t\u003C/a\u003E\n\t\t\t\u003Ca href=\"http://secu.be/search.php#\"\u003E\n\t\t\u003Cimg src=\"http://secu.be/themes/orange-slice/web/media/edit.gif\" alt=\"edit\" /\u003E\n\t\u003C/a\u003E\n\t\t\t\u003Ch4\u003E\u003Ca href=\"http://www.securitytracker.com/alerts/2009/Jul/1022498.html\"\u003EJoomla! Bugs Permit Cross-Site Scripting Attacks and Let Remote Users Determine the Installation Path\u003C/a\u003E\u003C/h4\u003E\n\t\n\t\u003Ch5\u003ER\u00e9cup\u00e9r\u00e9: \u003Ca href=\"http://secu.be/SecurityTracker_Vulnerability_Headlines/2009/07/\"\u003Ejuillet\u003C/a\u003E \u003Ca href=\"http://secu.be/SecurityTracker_Vulnerability_Headlines/2009/07/02/\"\u003E 2nd\u003C/a\u003E, 2009, 9:40pm CEST\u003C/h5\u003E\n\t\t\t\u003Cdiv class=\"content\"\u003E\n\t\tJoomla! Bugs Permit Cross-Site Scripting Attacks and Let Remote Users Determine the Installation Path\t\u003C/div\u003E\n\u003C/li\u003E\u003C/ul\u003E\n\u003C!-- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - --\u003E\n\u003Ch3\u003E\n\t\u003Ca href=\"http://secu.be/bugtraq_at_insecure.org/\"\u003Ebugtraq at insecure.org\u003C/a\u003E\n\u003C/h3\u003E\n\n\u003Cul\u003E\u003Cli class=\"item even\"\u003E\n\t\t\u003Ca href=\"http://secu.be/bugtraq_at_insecure.org/2009/07/02/%5BISecAuditors_Security_Advisories%5D_Joomla%21_%3C_1.5.12_Multiple_XSS_vulnerabilities_in_HTTP_Headers\" title=\"Lien pour '[isecauditors security advisories] joomla! \u0026lt; 1.5.12 multiple xss vulnerabilities in http headers'\" class=\"plink\"\u003E\n\t\t\u003Cimg src=\"http://secu.be/themes/orange-slice/web/media/pl.gif\" alt=\"Lien pour '[ISecAuditors Security Advisories] Joomla! \u0026lt; 1.5.12 Multiple XSS vulnerabilities in HTTP Headers'\" /\u003E\n\t\u003C/a\u003E\n\t\t\t\u003Ca href=\"http://secu.be/search.php#\"\u003E\n\t\t\u003Cimg src=\"http://secu.be/themes/orange-slice/web/media/edit.gif\" alt=\"edit\" /\u003E\n\t\u003C/a\u003E\n\t\t\t\u003Ch4\u003E\u003Ca href=\"http://www.seclists.org/lists/bugtraq/2009/Jul/0011.html\"\u003E[ISecAuditors Security Advisories] Joomla! \u0026lt; 1.5.12 Multiple XSS vulnerabilities in HTTP Headers\u003C/a\u003E\u003C/h4\u003E\n\t\n\t\u003Ch5\u003EPubli\u00e9: \u003Ca href=\"http://secu.be/bugtraq_at_insecure.org/2009/07/\"\u003Ejuillet\u003C/a\u003E \u003Ca href=\"http://secu.be/bugtraq_at_insecure.org/2009/07/02/\"\u003E 2nd\u003C/a\u003E, 2009, 5:13pm CEST\u003C/h5\u003E\n\t\t\t\u003Cdiv class=\"content\"\u003E\nINTERNET SECURITY AUDITORS ALERT 2009-007 - Original release date: June\n30th, 2009 - Last revised: July 2nd, 2009 - Discovered by: Juan Galiana\nLara - Severity: 6.8/10 (CVSS Base Score) I. VULNERABILITY Joomla!\t\u003C/div\u003E\n\u003C/li\u003E\u003C/ul\u003E\n\u003C!-- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - --\u003E\n\u003Ch3\u003E\n\t\u003Ca href=\"http://secu.be/FullDisclosure_at_insecure.org/\"\u003EFullDisclosure at insecure.org\u003C/a\u003E\n\u003C/h3\u003E\n\n\u003Cul\u003E\u003Cli class=\"item even\"\u003E\n\t\t\u003Ca href=\"http://secu.be/FullDisclosure_at_insecure.org/2009/07/02/%5BISecAuditors_Security_Advisories%5D_Joomla%21_%3C_1.5.12_Multiple_XSS_vulnerabilities_in_HTTP_Headers\" title=\"Lien pour '[isecauditors security advisories] joomla! \u0026lt; 1.5.12 multiple xss vulnerabilities in http headers'\" class=\"plink\"\u003E\n\t\t\u003Cimg src=\"http://secu.be/themes/orange-slice/web/media/pl.gif\" alt=\"Lien pour '[ISecAuditors Security Advisories] Joomla! \u0026lt; 1.5.12 Multiple XSS vulnerabilities in HTTP Headers'\" /\u003E\n\t\u003C/a\u003E\n\t\t\t\u003Ca href=\"http://secu.be/search.php#\"\u003E\n\t\t\u003Cimg src=\"http://secu.be/themes/orange-slice/web/media/edit.gif\" alt=\"edit\" /\u003E\n\t\u003C/a\u003E\n\t\t\t\u003Ch4\u003E\u003Ca href=\"http://www.seclists.org/lists/fulldisclosure/2009/Jul/0010.html\"\u003E[ISecAuditors Security Advisories] Joomla! \u0026lt; 1.5.12 Multiple XSS vulnerabilities in HTTP Headers\u003C/a\u003E\u003C/h4\u003E\n\t\n\t\u003Ch5\u003EPubli\u00e9: \u003Ca href=\"http://secu.be/FullDisclosure_at_insecure.org/2009/07/\"\u003Ejuillet\u003C/a\u003E \u003Ca href=\"http://secu.be/FullDisclosure_at_insecure.org/2009/07/02/\"\u003E 2nd\u003C/a\u003E, 2009, 5:13pm CEST\u003C/h5\u003E\n\t\t\t\u003Cdiv class=\"content\"\u003E\nINTERNET SECURITY AUDITORS ALERT 2009-007 - Original release date: June\n30th, 2009 - Last revised: July 2nd, 2009 - Discovered by: Juan Galiana\nLara - Severity: 6.8/10 (CVSS Base Score) I. VULNERABILITY Joomla!\t\u003C/div\u003E\n\u003C/li\u003E\u003C/ul\u003E\n\u003C!-- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - --\u003E\n\u003Ch3\u003E\n\t\u003Cimg class=\"favicon\" src=\"http://secu.be/extlib/favicon.php?url=http://milw0rm.com/favicon.ico\" alt=\"\" /\u003E\n\t\u003Ca href=\"http://secu.be/milw0rm.com/\"\u003Emilw0rm.com\u003C/a\u003E\n\u003C/h3\u003E\n\n\u003Cul\u003E\u003Cli class=\"item even\"\u003E\n\t\t\u003Ca href=\"http://secu.be/milw0rm.com/2009/06/29/Joomla_com_bookflip_%28book_id%29_Remote_SQL_Injection_Vulnerability\" title=\"Lien pour 'joomla com_bookflip (book_id) remote sql injection vulnerability'\" class=\"plink\"\u003E\n\t\t\u003Cimg src=\"http://secu.be/themes/orange-slice/web/media/pl.gif\" alt=\"Lien pour 'Joomla com_bookflip (book_id) Remote SQL Injection Vulnerability'\" /\u003E\n\t\u003C/a\u003E\n\t\t\t\u003Ca href=\"http://secu.be/search.php#\"\u003E\n\t\t\u003Cimg src=\"http://secu.be/themes/orange-slice/web/media/edit.gif\" alt=\"edit\" /\u003E\n\t\u003C/a\u003E\n\t\t\t\u003Ch4\u003E\u003Ca href=\"http://www.milw0rm.com/exploits/9040\"\u003EJoomla com_bookflip (book_id) Remote SQL Injection Vulnerability\u003C/a\u003E\u003C/h4\u003E\n\t\n\t\u003Ch5\u003EPubli\u00e9: \u003Ca href=\"http://secu.be/milw0rm.com/2009/06/\"\u003Ejuin\u003C/a\u003E \u003Ca href=\"http://secu.be/milw0rm.com/2009/06/29/\"\u003E29th\u003C/a\u003E, 2009, 2:00am CEST\u003C/h5\u003E\n\t\t\t\u003Cdiv class=\"content\"\u003E\n\t\tJoomla com_bookflip (book_id) Remote SQL Injection Vulnerability\t\u003C/div\u003E\n\u003C/li\u003E\u003Cli class=\"item even\"\u003E\n\t\t\u003Ca href=\"http://secu.be/milw0rm.com/2009/06/25/Joomla_Component_com_pinboard_%28task%29_SQL_Injection_Exploit\" title=\"Lien pour 'joomla component com_pinboard (task) sql injection exploit'\" class=\"plink\"\u003E\n\t\t\u003Cimg src=\"http://secu.be/themes/orange-slice/web/media/pl.gif\" alt=\"Lien pour 'Joomla Component com_pinboard (task) SQL Injection Exploit'\" /\u003E\n\t\u003C/a\u003E\n\t\t\t\u003Ca href=\"http://secu.be/search.php#\"\u003E\n\t\t\u003Cimg src=\"http://secu.be/themes/orange-slice/web/media/edit.gif\" alt=\"edit\" /\u003E\n\t\u003C/a\u003E\n\t\t\t\u003Ch4\u003E\u003Ca href=\"http://www.milw0rm.com/exploits/9017\"\u003EJoomla Component com_pinboard (task) SQL Injection Exploit\u003C/a\u003E\u003C/h4\u003E\n\t\n\t\u003Ch5\u003EPubli\u00e9: \u003Ca href=\"http://secu.be/milw0rm.com/2009/06/\"\u003Ejuin\u003C/a\u003E \u003Ca href=\"http://secu.be/milw0rm.com/2009/06/25/\"\u003E25th\u003C/a\u003E, 2009, 2:00am CEST\u003C/h5\u003E\n\t\t\t\u003Cdiv class=\"content\"\u003E\n\t\tJoomla Component com_pinboard (task) SQL Injection Exploit\t\u003C/div\u003E\n\u003C/li\u003E\u003C/ul\u003E"} &lt;!-- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - --> <h3> <a href="http://secu.be/Latest_OSVDB_Vulnerabilities/">Latest OSVDB Vulnerabilities</a> </h3> <ul><li class="item even"> <a href="http://secu.be/Latest_OSVDB_Vulnerabilities/2009/07/04/Boy_Scout_Advancement_Component_for_Joomla%21_index.php_id_Parameter_SQL_Injection" class="plink" title="Lien pour 'boy scout advancement component for joomla! index.php id parameter sql injection'"> <img src="http://secu.be/themes/orange-slice/web/media/pl.gif" alt="Lien pour 'Boy Scout Advancement Component for Joomla! index.php id Parameter SQL Injection'" /> </a> <a href="http://secu.be/search.php#"> <img src="http://secu.be/themes/orange-slice/web/media/edit.gif" alt="edit" /> </a> <h4><a href="http://osvdb.org/show/osvdb/1060615">Boy Scout Advancement Component for Joomla! index.php id Parameter SQL Injection</a></h4> <h5>Récupéré: <a href="http://secu.be/Latest_OSVDB_Vulnerabilities/2009/07/">juillet</a> <a href="http://secu.be/Latest_OSVDB_Vulnerabilities/2009/07/04/"> 4th</a>, 2009, 1:11am CEST</h5> <div class="content"> Boy Scout Advancement Component for Joomla! index.php id Parameter SQL Injection </div> </li><li class="item even"> <a href="http://secu.be/Latest_OSVDB_Vulnerabilities/2009/07/04/Database_Query_Component_for_Joomla%21_classes_DBQ_admin_common.class.php_mosConfig_absolute_path_Parameter_Remote_File_Inclusion" class="plink" title="Lien pour 'database query component for joomla! classes/dbq/admin/common.class.php mosconfig_absolute_path parameter remote file inclusion'"> <img src="http://secu.be/themes/orange-slice/web/media/pl.gif" alt="Lien pour 'Database Query Component for Joomla! classes/DBQ/admin/common.class.php mosConfig_absolute_path Parameter Remote File Inclusion'" /> </a> <a href="http://secu.be/search.php#"> <img src="http://secu.be/themes/orange-slice/web/media/edit.gif" alt="edit" /> </a> <h4><a href="http://osvdb.org/show/osvdb/1060624">Database Query Component for Joomla! classes/DBQ/admin/common.class.php mosConfig_absolute_path Parameter Remote File Inclusion</a></h4> <h5>Récupéré: <a href="http://secu.be/Latest_OSVDB_Vulnerabilities/2009/07/">juillet</a> <a href="http://secu.be/Latest_OSVDB_Vulnerabilities/2009/07/04/"> 4th</a>, 2009, 1:11am CEST</h5> <div class="content"> Database Query Component for Joomla! classes/DBQ/admin/common.class.php mosConfig_absolute_path Parameter Remote File Inclusion </div> </li></ul> &lt;!-- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - --> <h3> <a href="http://secu.be/SecurityTracker_Vulnerability_Headlines/">SecurityTracker Vulnerability Headlines</a> </h3> <ul><li class="item even"> <a href="http://secu.be/SecurityTracker_Vulnerability_Headlines/2009/07/02/Joomla%21_Bugs_Permit_Cross-Site_Scripting_Attacks_and_Let_Remote_Users_Determine_the_Installation_Path" class="plink" title="Lien pour 'joomla! bugs permit cross-site scripting attacks and let remote users determine the installation path'"> <img src="http://secu.be/themes/orange-slice/web/media/pl.gif" alt="Lien pour 'Joomla! Bugs Permit Cross-Site Scripting Attacks and Let Remote Users Determine the Installation Path'" /> </a> <a href="http://secu.be/search.php#"> <img src="http://secu.be/themes/orange-slice/web/media/edit.gif" alt="edit" /> </a> <h4><a href="http://www.securitytracker.com/alerts/2009/Jul/1022498.html">Joomla! Bugs Permit Cross-Site Scripting Attacks and Let Remote Users Determine the Installation Path</a></h4> <h5>Récupéré: <a href="http://secu.be/SecurityTracker_Vulnerability_Headlines/2009/07/">juillet</a> <a href="http://secu.be/SecurityTracker_Vulnerability_Headlines/2009/07/02/"> 2nd</a>, 2009, 9:40pm CEST</h5> <div class="content"> Joomla! Bugs Permit Cross-Site Scripting Attacks and Let Remote Users Determine the Installation Path </div> </li></ul> &lt;!-- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - --> <h3> <a href="http://secu.be/bugtraq_at_insecure.org/">bugtraq at insecure.org</a> </h3> <ul><li class="item even"> <a href="http://secu.be/bugtraq_at_insecure.org/2009/07/02/%5BISecAuditors_Security_Advisories%5D_Joomla%21_%3C_1.5.12_Multiple_XSS_vulnerabilities_in_HTTP_Headers" class="plink" title="Lien pour '[isecauditors security advisories] joomla! &lt; 1.5.12 multiple xss vulnerabilities in http headers'"> <img src="http://secu.be/themes/orange-slice/web/media/pl.gif" alt="Lien pour '[ISecAuditors Security Advisories] Joomla! &lt; 1.5.12 Multiple XSS vulnerabilities in HTTP Headers'" /> </a> <a href="http://secu.be/search.php#"> <img src="http://secu.be/themes/orange-slice/web/media/edit.gif" alt="edit" /> </a> <h4><a href="http://www.seclists.org/lists/bugtraq/2009/Jul/0011.html">[ISecAuditors Security Advisories] Joomla! &lt; 1.5.12 Multiple XSS vulnerabilities in HTTP Headers</a></h4> <h5>Publié: <a href="http://secu.be/bugtraq_at_insecure.org/2009/07/">juillet</a> <a href="http://secu.be/bugtraq_at_insecure.org/2009/07/02/"> 2nd</a>, 2009, 5:13pm CEST</h5> <div class="content"> INTERNET SECURITY AUDITORS ALERT 2009-007 - Original release date: June 30th, 2009 - Last revised: July 2nd, 2009 - Discovered by: Juan Galiana Lara - Severity: 6.8/10 (CVSS Base Score) I. VULNERABILITY Joomla! </div> </li></ul> &lt;!-- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - --> <h3> <a href="http://secu.be/FullDisclosure_at_insecure.org/">FullDisclosure at insecure.org</a> </h3> <ul><li class="item even"> <a href="http://secu.be/FullDisclosure_at_insecure.org/2009/07/02/%5BISecAuditors_Security_Advisories%5D_Joomla%21_%3C_1.5.12_Multiple_XSS_vulnerabilities_in_HTTP_Headers" class="plink" title="Lien pour '[isecauditors security advisories] joomla! &lt; 1.5.12 multiple xss vulnerabilities in http headers'"> <img src="http://secu.be/themes/orange-slice/web/media/pl.gif" alt="Lien pour '[ISecAuditors Security Advisories] Joomla! &lt; 1.5.12 Multiple XSS vulnerabilities in HTTP Headers'" /> </a> <a href="http://secu.be/search.php#"> <img src="http://secu.be/themes/orange-slice/web/media/edit.gif" alt="edit" /> </a> <h4><a href="http://www.seclists.org/lists/fulldisclosure/2009/Jul/0010.html">[ISecAuditors Security Advisories] Joomla! &lt; 1.5.12 Multiple XSS vulnerabilities in HTTP Headers</a></h4> <h5>Publié: <a href="http://secu.be/FullDisclosure_at_insecure.org/2009/07/">juillet</a> <a href="http://secu.be/FullDisclosure_at_insecure.org/2009/07/02/"> 2nd</a>, 2009, 5:13pm CEST</h5> <div class="content"> INTERNET SECURITY AUDITORS ALERT 2009-007 - Original release date: June 30th, 2009 - Last revised: July 2nd, 2009 - Discovered by: Juan Galiana Lara - Severity: 6.8/10 (CVSS Base Score) I. VULNERABILITY Joomla! </div> </li></ul> &lt;!-- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - --> <h3> <img class="favicon" src="http://secu.be/extlib/favicon.php?url=http://milw0rm.com/favicon.ico" alt="" /> <a href="http://secu.be/milw0rm.com/">milw0rm.com</a> </h3> <ul><li class="item even"> <a href="http://secu.be/milw0rm.com/2009/06/29/Joomla_com_bookflip_%28book_id%29_Remote_SQL_Injection_Vulnerability" class="plink" title="Lien pour 'joomla com_bookflip (book_id) remote sql injection vulnerability'"> <img src="http://secu.be/themes/orange-slice/web/media/pl.gif" alt="Lien pour 'Joomla com_bookflip (book_id) Remote SQL Injection Vulnerability'" /> </a> <a href="http://secu.be/search.php#"> <img src="http://secu.be/themes/orange-slice/web/media/edit.gif" alt="edit" /> </a> <h4><a href="http://www.milw0rm.com/exploits/9040">Joomla com_bookflip (book_id) Remote SQL Injection Vulnerability</a></h4> <h5>Publié: <a href="http://secu.be/milw0rm.com/2009/06/">juin</a> <a href="http://secu.be/milw0rm.com/2009/06/29/">29th</a>, 2009, 2:00am CEST</h5> <div class="content"> Joomla com_bookflip (book_id) Remote SQL Injection Vulnerability </div> </li><li class="item even"> <a href="http://secu.be/milw0rm.com/2009/06/25/Joomla_Component_com_pinboard_%28task%29_SQL_Injection_Exploit" class="plink" title="Lien pour 'joomla component com_pinboard (task) sql injection exploit'"> <img src="http://secu.be/themes/orange-slice/web/media/pl.gif" alt="Lien pour 'Joomla Component com_pinboard (task) SQL Injection Exploit'" /> </a> <a href="http://secu.be/search.php#"> <img src="http://secu.be/themes/orange-slice/web/media/edit.gif" alt="edit" /> </a> <h4><a href="http://www.milw0rm.com/exploits/9017">Joomla Component com_pinboard (task) SQL Injection Exploit</a></h4> <h5>Publié: <a href="http://secu.be/milw0rm.com/2009/06/">juin</a> <a href="http://secu.be/milw0rm.com/2009/06/25/">25th</a>, 2009, 2:00am CEST</h5> <div class="content"> Joomla Component com_pinboard (task) SQL Injection Exploit </div> </li></ul>Sun, 05 Jul 2009 17:25:14 GMThttp://joomla.soup.io/post/22652623/joomla-vulnerabilitiesurn:www-soup-io:1:22652623regular