allCineVid 1.0 SQL Injection - Joomtraders - The Joomla! Extension Specialists

Extensions Our Blog Support Forum FAQ About Contact Us

allCineVid 1.0 SQL Injection

Monday, 24 January 2011 Jared Green

allCineVid

After successfully reaching the JED last week, our new extension for inserting Youtube, Vimeo and Dailymotion videos into a Joomla! website through the use of a lightbox, allCineVid, was taken down due to a suspected SQL injection flaw.

After looking into the issue, we found that there is an unwarranted condition that can be inserted in the URL string, though we are at the understanding that it is not a major risk because it is limited by the ID condition in the string. Regardless, a fix has been applied and we recommend that users upgrade to the the latest version of the extension.

If you have any questions regarding this extension, please do not hesitate to contact us directly.

User Login

Need Constant News Updates?
Sign up to our Newsletter!

The Latest from Joomtraders

Issue with Facebook Connect for allArt

Joomla 2.5 compatibility for allArticl

allChimpRegister update: allows dashes

Joomla User Group Adelaide - Sept 2011

login() API issue & fix for allChimp a

Joomla User Group Adelaide August 9th

allChimpRegister 2.0 for Joomla 1.7 re

allArticleAnnounce 2.0 Released - J16+

Joomla! User Group Adelaide for June 2

Updated allGoogleXMLSitemap to use SEF

allChimpRegister security fix; languag

Beta testers wanted for our Joomla! 1.

Joomla! User Group Adelaide - May 2011

Joomla User Group Adelaide - April 201

AllArticleAnnounce 1.6.3 Twitter API b

February 2011 JUG Adelaide meeting

Updated allChimp and allChimpRegister

allCineVid 1.0 SQL Injection

Joomla! 1.6 released!

allArticleAnnounce 1.6.2 - fine tune f

Welcome to 2011 from Joomtraders

New Free Extension: allDebugControl

allArticleAnnounce updated to 1.6.1

New Video Extension: allCineVid

Joomla! 1.6 Beta 15 released, RC1 on t

New Joomtraders Styling

allArticleAnnounce back in business

November Joomla! User Group Meeting

Facebook change breaks publishing

allArticleAnnounce 1.6.0 Released!

Facebook and Twitter up and down

New extension allContentMinimize Relea

allContentMinimize extension Released!

September Joomla! User Group Adelaide

allArticleAnnounce 1.5.0 Released!

allArticleAnnounce 1.5.0 Released!

allInstantTweet - Version 1.3.0 Releas

allInstantTweet - Version 1.3.0 Releas

allArticleAnnounce 1.4.0 Released!

allArticleAnnounce 1.4.0 Released!

Twitter API Change Updates

Twitter API Change for allArticleAnnou

allArticleAnnounce 1.2.0 Released!

allArticleAnnounce 1.2.0 Released!

Joomtraders on the Move

Facebook Mobile is down

Facebook Mobile is up

Facebook Change; Mark 2

Facebook API change

There's nothing quite like a good brek

Joomla! User Group Adelaide

Adelaide Joomla! User Group

allInstantFacebook - Version 1.1.0 Rel

allInstantFacebook - Version 1.1.0 Rel

allInstantPlurk - Version 1.1.0 Releas

allInstantPlurk - Version 1.1.0 Releas

allArticlePlurk - Version 1.1.0 Releas

allArticlePlurk - Version 1.1.0 Releas

allInstantTweet - Version 1.1.0 Releas

allInstantTweet - Version 1.1.0 Releas

Last Days of Discount

allArticleAnnounce - Version 1.1.0 Rel

allTop5 1.0.1 Released

50% Off Sale - Extended to January!

Beautiful Adelaide

Welcome Visitors from the Joomla! Exte

allArticleAnnounce 1.0.2 Released

allMembersRecord 1.0.1 Released

allGoogleXMLSitemap Extension Released

allGoogleXMLNewsmap Extension Released

Let's Decimate December

Site Update

allChimpRegister Extension Released

What constitutes good support

allChimp Extension Released

allArticleAnnounce Extension Released

Publishing devolution

Joomla!

Google Mail and Spam

Joomtraders update

Just add water

Need More? Click here...

Joomtraders RSS Feed
Subscribe to our RSS Feed!

Latest Tweet

joomtraders: RT @alltraders: Interested in Joomla 3.0, web security, and CMS advice? The Joomla User Group Adelaide's on @alltraders Tues 14th, 6pm h ...

Joomtraders - Joomla! enthusiasts. Providing high quality, professional Joomla! extensions for the ever expanding Joomla! community. Joomtraders is a creative outworking of the team at Alltraders, Adelaide based, South Australian Joomla! specialists and web hosting company. Our focused web development arm is complemented by a team of professional software developers. We have expertise in PHP, C++, VB, .Net, Javascript, HTML, Ajax, SQL and more. We provide dedicated Joomla hosting on our servers both in Australia and the United States. For more on what we can do please visit our Extensions area.

Copyright 2011 Alltraders. Powered by Joomtraders

joomtraders.com is not affiliated with or endorsed by the Joomla! Project or Open Source Matters. The Joomla! name and logo is used under a limited license granted by Open Source Matters the trademark holder in the United States and other countries.

Terms & Conditions | Privacy | About

Home

Home

Home

Home

Home

Home

Home

Home

Home

Home

Home

Home

Home

Home

Home

Home

Home

Home

Home

Home

Home

Home

Home