I had tried using Joomla in the past on another project and I wasn’t overly enamoured with it. That being said there are literally thousands of people out there who are fans. With that we have a rather extensive install base. For those of you that are using Joomla please be aware of this vulnerability.
Description:
A vulnerability has been discovered in Joomla!, which can be exploited by malicious users to conduct SQL injection attacks.For more information:
SA21644The vulnerability has been confirmed in version 1.0.10. Other versions may also be affected.
Solution:
Edit the source code to ensure that input is properly sanitised.Grant only trusted users “Editor” privileges.
[tags]Joomla, SQL Injection, Vulnerability[/tags]