Comments on: Problemi di sicurezza per alcune estensioni di Joomla http://www.copesflavio.com/blog/cms/joomla/problemi-di-sicurezza-per-alcune-estensioni-di-joomla/ Joomla, Web Development, Joomla Templates Thu, 08 Jan 2009 16:54:40 +0000 http://wordpress.org/?v=2.7 hourly 1 By: Copes Flavio http://www.copesflavio.com/blog/cms/joomla/problemi-di-sicurezza-per-alcune-estensioni-di-joomla/comment-page-1/#comment-932 Copes Flavio Sat, 11 Oct 2008 11:38:31 +0000 http://www.copesflavio.com/blog/?p=733#comment-932 Per quanto riguarda Mad4Joomla, tratto da http://www.mad4media.de/mad4joomla-mailforms-faq.html How to fix the security vulnerability without reinstalling the component. Edit the file: components/com_mad4joomla/mad4joomla.php Find this: $jid = mosGetParam($_REQUEST, 'jid'); [between line 45-70] Change it to: $jid = intval(mosGetParam($_REQUEST, 'jid')); Save and upload the file again. Per quanto riguarda Mad4Joomla, tratto da http://www.mad4media.de/mad4joomla-mailforms-faq.html

How to fix the security vulnerability without reinstalling the component.

Edit the file:
components/com_mad4joomla/mad4joomla.php

Find this:
$jid = mosGetParam($_REQUEST, ‘jid’); [between line 45-70]

Change it to:
$jid = intval(mosGetParam($_REQUEST, ‘jid’));

Save and upload the file again.

]]>