ListMessenger Logo
ListMessenger For Joomla 1.5.x WordMark
Home FAQ Turbo! Blog About Contact

Security Announcement for Joomla 1.5.0

The core developers of Joomla! have just released a statement about a security exploit in Joomla 1.5.0

After releasing Joomla! 1.5 stable we have discovered a high priority security issue.

The vulnerability has been discovered in XML-RPC in combination with the blogger API.

There is a security problem in this code that makes it possible to alter the articles

on your site (including removal). This problems has been fixed currently by members

of the development team and the Joomla! bug squad, solution is now available from

Subversion. So what do you need to do until we release Joomla! 1.5.1?
All Joomla! users who have enabled the XML-RPC Blogger API plugin should disable it!

If you have never enabled this plugin you do not need to do anything.

This comes hot on the tail of an xml-rpc issue in wordpress also !

Tags:Tags: , , | February 6th, 2008 |

No Comments »

No comments yet.

RSS feed for comments on this post. TrackBack URI

Leave a comment

Phil Taylor, Director of Blue Flame IT (Jersey) Ltd, Full Time Professional Joomla Expert. Phil is a Zend PHP5 Certified Engineer and is a member of a local Lifeboat Crew!

Search:
Copyright (C) 2008 Blue Flame IT (Jersey) Ltd. All Rights Reserved.

Joomla! is Free Software released under the GNU/GPL License.
This is not an official Joomla! Site, or Product. The use of the
word Joomla! is intended to describe what the product is designed
for and should not be considered an endorsement by the Joomla Project.