Tag Archives: Joomla Security

Critical Joomla! Security Alert!

joomla web security michigan

There are still many websites that have yet to update to the latest version of Joomla! and have since fallen prey to hackers. Contact ‘corePHP’ today to have our experts update your website immediately.

This vulnerability is so serious, the Joomla! security team has taken action and have issued a Joomla! security alert. The security team has also released a patch to resolve a critical remote command execution vulnerability in Joomla versions 1.5 to 3.4. If you are running end-of-life versions, like 1.5.x and 2.5.x, update TODAY to minimize your potential risks. Continue reading

300,000 Affected by JoomDonation Hacker

I have your data - JoomDonation Hacker

When a hacker holds your small business for ransom, what would you do?

Late last week Tuan Pham Ngoc, developer of JoomDonation, a product of OS Solution, confirmed there was a security incident which ended up affecting over 300,000 Joomla users, most of them associated with JoomDonation.  A hacker broke into an OS Solution e-mail server, stole account information, and distributed a nastygram email to account holders (see the letter below, for context). Continue reading

Make your website secure using Joomla

There is one and only award winning content management system utilized by millions around the globe, including probably the most regarded organizations and that system is Joomla. It is one of the web’s most prevalent open source CMS and a standout amongst the most utilized open source CMS around the world. Another good feature of Joomla is that it is easy to do SEO for your Joomla website.

joomla-hosting-server

Nobody wants to have their site get hacked. But practically everybody has some motivation to overlook efforts to establish safety. Security is a standout amongst the most imperative issues confronting both web clients and web engineers. It gets considerably more imperative when you’re utilizing a CMS, for example, Joomla. Continue reading

[Infographic] Is Your Website Safe?

If you are a website owner, then you might have faced this question at least once, “Is your website safe?

Though you might have not been directly asked by someone else, you might have at one point asked yourself this question. And you should, for this is a serious matter that you need to take care of.

In a world like this, where even the most secure websites are being challenged by smart and intelligent hackers, you should definitely make sure that you have taken enough measures to make your website secure from a majority of hackers.

To give you a rough idea of how smart these hackers are, let me state an incident which I came across recently. Continue reading

What’s happening behind the scenes on your website – I

Often our daily tasks keep us busy and as long as our business websites are running, we are happy. It is only when our entire website or server is taken down by a hacker, does the back room machinations of our site suddenly have interest.

In this two part blog series, CMS security expert and author Tom Canavan, will present a brief tutorial on how to read and make use of ‘Apache’ access logs.  In the second installment he’ll discuss how we find, download and adjust settings for maximum value using cPANEL® one of the most popular control applications for webservers.

Continue reading

cACL Update 1.3.9 for Joomla! 1.5 Access Control

We’ve released Community ACL 1.3.9. We have added several new additions with the way we handle front-end menus. There is now support for yoo_enterprise. We’ve also turned on preserve-entities in libtidy to not change   into the dreaded ‘?’s. To get the look and feel more consistent in the back-end we’ve removed the sort options for the roles. All the columns now sort alphabetically on the group, role, or function name. The “remove all” button on the functions will now work properly as well.

Bug fix version 1.3.8 corrects an issue where the category drop-downs were being replaced with incorrect information.

1.3.7 of Community ACL fixes an issue that showed up as a result of adding libtidy for front-end joomla menu restrictions.

Bug fix version 1.3.6 addresses an issue where in IE8 will not properly remove all list items by clicking the clear all button.

This will not work in Internet Explorer:
tbody.innerHTML = ”;
It’s a known bug that they (MS) have ignored.

But never fear, replace the innerHTML code with:
while ( tbody.childNodes.length >= 1 ){
tbody.removeChild( tbody.firstChild );
}

We are committed to continuing the improvement of our products. Please feel free to submit support tickets for any issues you are experiencing.

For more information on Community ACL::

Learn more about cACL