Intellispire Informer

Quick Stats

The Intellispire Software Installer is currently being run by over 10320 people on 20106 websites - including this one!

The Buzz

"the updater, this can really revolutionize joomla…become a must have component for other developers and users as well ..."
-- Debo

Joomla! Component Vulnerability Summary for the Week of March 15, 2010
Monday, 22 March 2010 15:17

The United States Computer Emergency Readiness Team has released a new security alert. The affected software includes multiple Joomla! components. If you are using any of the following components, please upgrade immediately.

  • com_abbrev
    Directory traversal vulnerability in the Abbreviations Manager (com_abbrev) component 1.1 for Joomla! allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the controller parameter to index.php.
  • com_gcalendar
    Directory traversal vulnerability in the GCalendar (com_gcalendar) component 2.1.5 for Joomla! allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the controller parameter to index.php.
  • com_tpjobs
    SQL injection vulnerability in the TPJobs (com_tpjobs) component for Joomla! allows remote attackers to execute arbitrary SQL commands via the id_c[] parameter in a resadvsearch action to index.php.
  • com_cartweberp
    Directory traversal vulnerability in the CARTwebERP (com_cartweberp) component 1.56.75 for Joomla! allows remote attackers to read arbitrary files via a .. (dot dot) in the controller parameter to index.php.

Please see Vulnerability Summary for the Week of March 15, 2010 For the official report.

Key: high joomla vulerability, medium joomla vulnerability, low joomla vulnerability
 
Connect on Twitter
Connect on Facebook

System Requirements

Most Intellispire Joomla! Software works with PHP 5.2/5.3 and Joomla 1.5+ (including 2.5) or Wordpress 3.2+. Software is unencoded and licensed under the GPL. Hosting is available.

©2002-2012 Intellispire
Web Analytics