Youjoomla Blog

Latest news and resources from Youjoomla Team.

XSS Security Patch for YJ Whois

XSS Security Patch for YJ Whois

Dragan Todorovic

Dragan Todorovic

December 3rd 2009

Thanks to Mr andresg888 and Mr Lafrance , we have discovered low risk XSS vulnerability in YJ Whois and YJ Whois 2.0 Joomla versions 1.0x and 1.5.x. All files on the server have been updated. If you are using these extensions please download the new versions and reinstall

If you use any of these demo installations the buggy version of YJ Whois is included ,

H-Connect for Joomla 1.0 and Joomla 1.5
Youhostit for Joomla 1.5

File affected is , modules/mod_yj_whois.php.

Visit this forum thread for manual fix.

update security modules extensions

RELATED NEWS

YJ Image Slider 3.0 FLV bug fixed

YJ Image Slider 3.0 FLV bug fixed

Joomla 1.5.21 Upgrade Released

Joomla 1.5.21 Upgrade Released

Yjsg version 2.1.2 released

Yjsg version 2.1.2 released

Youjoomla

Products

Support

Latest News

Yjsg Version 2.3.6 released Yjsg 2.3.6 for Joomla has been released. This version improves the code and fixes few bugs. S Continue reading

Introducing simple and affordable pricing model In the past few years our pricing model was separating members in to single purchase and club memb Continue reading

Members Login

Blog