Youjoomla Blog

Latest news and resources from Youjoomla Team.

XSS Security Patch for YJ Whois

XSS Security Patch for YJ Whois

Dragan Todorovic

Dragan Todorovic

December 3rd 2009

Thanks to Mr andresg888 and Mr Lafrance , we have discovered low risk XSS vulnerability in YJ Whois and YJ Whois 2.0 Joomla versions 1.0x and 1.5.x. All files on the server have been updated. If you are using these extensions please download the new versions and reinstall

If you use any of these demo installations the buggy version of YJ Whois is included ,

H-Connect for Joomla 1.0 and Joomla 1.5
Youhostit for Joomla 1.5

File affected is , modules/mod_yj_whois.php.

Visit this forum thread for manual fix.

update security modules extensions

RELATED NEWS

Joomla 1.6.2 security release

Joomla 1.6.2 security release

Get ready for Joomla! 2.5

Get ready for Joomla! 2.5

Joomla 2.5.3 update released

Joomla 2.5.3 update released

Youjoomla

Products

Support

Latest News

Something Awesome Is Coming Your Way Five years ago we had an idea that we knew it will consume all our time but once it is finished it w Continue reading

Yjsg Version 2.3.2 released Yjsg 2.3.2 for Joomla 2.5.x and 3.x has been released. This version improves the code and fixes fe Continue reading

Members Login

Blog