skyclimate.ru

честь ...

  • Увеличить размер шрифта
  • Размер шрифта по умолчанию
  • Уменьшить размер шрифта
Newsfeeds
Security


  • [20140904] - Core - Denial of Service
    • Project: Joomla!
    • SubProject: CMS
    • Severity: Low
    • Versions: 2.5.4 through 2.5.25, 3.2.5 and earlier 3.x versions, 3.3.0 through 3.3.4
    • Exploit type: Denial of Service
    • Reported Date: 2014-September-24
    • Fixed Date: 2014-September-30
    • CVE Number: CVE-2014-7229

    Description

    Inadequate checking allowed the potential for a denial of service attack.

    Affected Installs

    Joomla! CMS versions 2.5.4 through 2.5.25, 3.2.5 and earlier 3.x versions, 3.3.0 through 3.3.4

    Solution

    Upgrade to version 2.5.26, 3.2.6, or 3.3.5

    Contact

    The JSST at the Joomla! Security Center.

    Reported By: Johannes Dahse


  • [20140903] - Core - Remote File Inclusion
    • Project: Joomla!
    • SubProject: CMS
    • Severity: Moderate
    • Versions: 2.5.4 through 2.5.25, 3.2.5 and earlier 3.x versions, 3.3.0 through 3.3.4
    • Exploit type: Remote File Inclusion
    • Reported Date: 2014-September-24
    • Fixed Date: 2014-September-30
    • CVE Number: CVE-2014-7228

    Description

    Inadequate checking allowed the potential for remote files to be executed.

    Affected Installs

    Joomla! CMS versions 2.5.4 through 2.5.25, 3.2.5 and earlier 3.x versions, 3.3.0 through 3.3.4

    Solution

    Upgrade to version 2.5.26, 3.2.6, or 3.3.5

    Additional Details

    Please refer to AkeebaBackup.com for additional details.

    Contact

    The JSST at the Joomla! Security Center.

    Reported By: Johannes Dahse


  • [20140902] - Core - Unauthorised Logins
    • Project: Joomla!
    • SubProject: CMS
    • Severity: Moderate
    • Versions: 2.5.24 and earlier 2.5.x versions, 3.2.4 and earlier 3.x versions, 3.3.0 through 3.3.3
    • Exploit type: Unauthorised Logins
    • Reported Date: 2014-September-09
    • Fixed Date: 2014-September-23
    • CVE Number: CVE-2014-6632

    Description

    Inadequate checking allowed unauthorised logins via LDAP authentication.

    Affected Installs

    Joomla! CMS versions 2.5.24 and earlier 2.5.x versions, 3.2.4 and earlier 3.x versions, 3.3.0 through 3.3.3

    Solution

    Upgrade to version 2.5.25, 3.2.5, or 3.3.4

    Contact

    The JSST at the Joomla! Security Center.

    Reported By: Matthew Daley


  • [20140901] - Core - XSS Vulnerability
    • Project: Joomla!
    • SubProject: CMS
    • Severity: Moderate
    • Versions: 3.2.0 through 3.2.4, 3.3.0 through 3.3.3
    • Exploit type: XSS Vulnerability
    • Reported Date: 2014-August-27
    • Fixed Date: 2014-September-23
    • CVE Number: CVE-2014-6631

    Description

    Inadequate escaping leads to XSS vulnerability in com_media.

    Affected Installs

    Joomla! CMS versions 3.2.0 through 3.2.4 and 3.3.0 through 3.3.3

    Solution

    Upgrade to version 3.2.5 or 3.3.4

    Contact

    The JSST at the Joomla! Security Center.

    Reported By: Dingjie (Daniel) Yang


  • [20140304] - Core - Unauthorised Logins
    • Project: Joomla!
    • SubProject: CMS
    • Severity: Moderate
    • Versions: 2.5.18 and earlier 2.5.x versions, 3.2.2 and earlier 3.x versions
    • Exploit type: Unauthorised Logins
    • Reported Date: 2014-February-21
    • Fixed Date: 2014-March-06
    • CVE Number: Pending

    Description

    Inadequate checking allowed unauthorised logins via GMail authentication.

    Affected Installs

    Joomla! CMS versions 2.5.18 and earlier 2.5.x versions, 3.2.2 and earlier 3.x versions

    Solution

    Upgrade to version 2.5.19 or 3.2.3

    Contact

    The JSST at the Joomla! Security Center.

    Reported By: Stefania Gaianigo



Who's Online

Сейчас 6 гостей онлайн

Statistics

Пользователи : 1041
Статьи : 69
Ссылки : 6
Просмотры материалов : 52119

Топ просмотров ...

1:  БРОВЦЫН Алексей Александрович (3266)
2:  БОДИСКО Михаил Андреевич (3099)
3:  УНКОВСКИЙ, Семен Яковлевич (2844)
4:  БОЛТИН Александр Арсентьевич (2836)
5:  ЛАВРОВ Сергей Флегонтович (2593)
6:  БЕРСЕНЕВ Федор Аркадьевич* (2521)
7:  АБЕРНИБЕСОВ (Обернибесов) Конон Антонович (2428)
8:  О\'БРИЕН-де-ЛАССИ Терентий Александрович (2315)
9:  НЕПЕНИН Адриан (Андриан) Иванович (2308)
10:  ВЕРХОВСКИЙ Владимир Павлович (2284)
11:  АРНАУТОВ Константин Петрович (2153)
12:  БРУСИЛОВ Лев Алексеевич (2124)
13:  ШИРИНСКИЙ-ШИХМАТОВ, кн Евгений Николаевич (2031)
14:  ЗЕНИЛОВ Николай Исаакович (2030)
15:  СИДЕНСНЕР Александр Карлович (2021)
16:  НАССАУ-ЗИГЕН, принц (1941)
17:  ПРОЗОРОВСКИЙ Илья Георгиевич (1913)
18:  АВИНОВ Александр Павлович (1870)
19:  АКИНФИЕВ Андрей Михайлович (1864)
20:  ПАРОМЕНСКИЙ Александр Иванович (1860)
21:  ВАСИЛЕВСКИЙ Кесарь Иванович (1831)
22:  АБАЗА (Abaza) Алексей Михайлович (1829)
23:  КРИГЕР Александр Христианович (1821)
24:  МАНДРАЖИ Евгений Николаевич (1791)
25:  ГИРС Александр Владимирович (1786)
26:  БАХИРЕВ Михаил Коронатович (1733)
27:  ЛИВЕН, светл кн Александр Александрович (1725)
28:  ЗОТОВ Григорий Иванович (1695)
29:  ПАНАЕВ Платон Аркадьевич (1691)
30:  ГИЛЯРОВСКИЙ Ипполит Иванович (1690)
31:  ГИЛЬТЕБРАНДТ Яков Аполлонович (1690)
32:  БАЖЕНОВ Александр Иванович (1684)
33:  ФЕРЗЕН, бар Василий Николаевич (1683)
34:  ЧЕРНИЛОВСКИЙ-Сокол Николай Иванович (1683)
35:  НЕБОЛЬСИН Аркадий Константинович (1665)