JSN Power Admin,2.3.0,XSS (Cross Site Scripting)

Published: Tuesday, 01 March 2016

JSN Power Admin,2.3.0,XSS (Cross Site Scripting)

Resolution: update to 2.3.2

Update notice: http://www.joomlashine.com/knowledgeportal/articles/jsn-poweradmin-vulnerability-problem-solved.html

Note that previous security release 2.3.1 is still vulnerable, and should be updated...

Read more: JSN Power Admin,2.3.0,XSS (Cross Site Scripting)

Breezing Forms Full and Lite

Published: Monday, 29 February 2016

Breezing Forms Full before build 884

Breezing Forms Lite before build 912

Information disclosure

Resolution: update to latest version

Update notice: https://crosstec.org/en/blog/859-breezingforms-medium-security-update.html...

Read more: Breezing Forms Full and Lite

Spider random articles before 1.5.3

Published: Monday, 29 February 2016

Spider random articles versions before 1.5.3

Resolution: update to 1.5.3

Update notice: https://web-dorado.com/products/joomla-random.html...

Read more: Spider random articles before 1.5.3

Form Maker before 3.6.0

Published: Monday, 29 February 2016

Form Maker versions before 3.6.0 XSS

Resolution: update to 3.6.0

Update notice: https://web-dorado.com/products/joomla-form.html...

Read more: Form Maker before 3.6.0

EasySocial versions before 1.4.7

Published: Sunday, 31 January 2016

EasySocial versions before 1.4.7: Code injection

Resolution: update to 1.4.7

Update notice: http://stackideas.com/blog/critical-update-for-easysocial-update-to-1-4-7-now...

Read more: EasySocial versions before 1.4.7