Lunarhotel.co.uk

Thank you!!! Best support I have ever had!

 
Text Size
Help Serious vunerability uncovered in Virtuemart 1.1.7 and below
Dylan

Serious vunerability uncovered in Virtuemart 1.1.7 and below Featured

Written by  Dylan Friday, 25 February 2011 14:12
Rate this item
(0 votes)
Print E-mail

A Serious vunerability has been discovered in Virtuemart 1.1.7 and below, that could allow an attacker to execute arbitary SQL commands (SQL injection) and without the user needing a valid account.

The chaps at Virtuemart have issued this security bulliten in response to the vunerability:

http://virtuemart.net/security-bulletins/396-vm-security-bulletin-2011-02-18

Its advised that everyone using Virtuemart 1.1.7 and below, upgrade immediately to 1.1.7a

For customers using our EmailAsUsername plugin, this update will not adversly affect the operation of EmailAsUsername.

Read 1369 times
Social sharing
More in this category: « Email As Username Beta 2 for Joomla 1.6 released EmailAsUsername Authentication plugin version 2.2 released »

Dylan

The founder of LunarHotel.co.uk.

Dylan has worked in the computer industry for over 15 Years, and in that time has become a specialist in web technologies, and both open source, and proprietary enterprise products.

Login to post comments
back to top

Buy now

Gold MembershipBuy now and install EmailAsUsername on your Joomla website. Our fully automated checkout process means you could have the plugin installed and operational in only 20 minutes!
paypal

Search the Knowledge Base

Forum posts

More Topics »

Video install instructions

Watch the video to see how to install the plugin

e2uvid

Download now

Your Account

Plugin demos

Help & Support