Youjoomla Blog

Latest news and resources from Youjoomla Team.

XSS Security Patch for YJ Whois

XSS Security Patch for YJ Whois

Dragan Todorovic

Dragan Todorovic

December 3rd 2009

Thanks to Mr andresg888 and Mr Lafrance , we have discovered low risk XSS vulnerability in YJ Whois and YJ Whois 2.0 Joomla versions 1.0x and 1.5.x. All files on the server have been updated. If you are using these extensions please download the new versions and reinstall

If you use any of these demo installations the buggy version of YJ Whois is included ,

H-Connect for Joomla 1.0 and Joomla 1.5
Youhostit for Joomla 1.5

File affected is , modules/mod_yj_whois.php.

Visit this forum thread for manual fix.

update security modules extensions

RELATED NEWS

Introducing Youjoomla v5

Introducing Youjoomla v5

Yjsg version 2.1.1 released

Yjsg version 2.1.1 released

YouGrids stable version 1.0.10

YouGrids stable version 1.0.10

Youjoomla

Products

Support

Latest News

Yjsg Version 2.3.4 released Yjsg 2.3.4 for Joomla has been released. This version improves the code and fixes few bugs. S Continue reading

Yjsg Version 2.3.3 released Yjsg 2.3.3 for Joomla 2.5.x and 3.x has been released. This version improves the code and fixes fe Continue reading

Members Login

Blog