Youjoomla Blog

Latest news and resources from Youjoomla Team.

XSS Security Patch for YJ Whois

XSS Security Patch for YJ Whois

Dragan Todorovic

Dragan Todorovic

December 3rd 2009

Thanks to Mr andresg888 and Mr Lafrance , we have discovered low risk XSS vulnerability in YJ Whois and YJ Whois 2.0 Joomla versions 1.0x and 1.5.x. All files on the server have been updated. If you are using these extensions please download the new versions and reinstall

If you use any of these demo installations the buggy version of YJ Whois is included ,

H-Connect for Joomla 1.0 and Joomla 1.5
Youhostit for Joomla 1.5

File affected is , modules/mod_yj_whois.php.

Visit this forum thread for manual fix.

update security modules extensions

RELATED NEWS

Joomla! 2.5.6 update released

Joomla! 2.5.6 update released

YJSG v2.0.0 White Paper

YJSG v2.0.0 White Paper

YouGrids 1.0.5 released iPhone scale view fix

YouGrids 1.0.5 released iPhone scale view fix

Youjoomla

Products

Support

Latest News

Yjsg Version 2.3.4 released Yjsg 2.3.4 for Joomla has been released. This version improves the code and fixes few bugs. S Continue reading

Yjsg Version 2.3.3 released Yjsg 2.3.3 for Joomla 2.5.x and 3.x has been released. This version improves the code and fixes fe Continue reading

Members Login

Blog