[fixed] foobla RSS Feed Creator for Joomla "id" SQL Injection

Your Cart is currently empty.

We've just came back to work after TET Holiday from 30^th Jan 2012.
Thanks so lot to our valued customers, we really appreciate your patience and we are trying hard to response to hundreds tickets of yours one by one.
Thank you for using foobla's products.

Joomla Extensions

Developing Joomla Extensions is our main business since 2007. More than 8 commercial Joomla Extensions as well as 7+ free Joomla Extensions...

Joomla Updater

We care of keeping Joomla sites up-to-date, Joomla Updater is one of our networks which provide installing & updating...

Download it FREE

Joomla Custom Work

Joomla Custom Work, we offer Joomla Custom Work per hour rate, or you can hire our Joomla Expert monthly

Get a Quote

[fixed] foobla RSS Feed Creator for Joomla "id" SQL Injection

foobla RSS Feed Creator for Joomla "id" SQL Injection

Description:
Chip d3 Bi0s has reported a vulnerability in foobla RSS Feed Creator for Joomla, which can be exploited by malicious people to conduct SQL injection attacks.

Input passed via the "id" parameter to index.php (if "option" is set to "com_jlord_rss" and "task" to "feed") is not properly sanitised before being used in an SQL query. This can be exploited to manipulate SQL queries by injecting arbitrary SQL code.

Source: http://secunia.com/advisories/36748/

Solution: upgrade to latest version (1.5.1.1_build20090922)

See how to get newer version here.

Latest News

26 Dec

Skrill (Moneybookers) payment gateway for Virtuemart

21 Dec

foobla Bunch of Extensions

30 Nov

Creating Joomla Podcast with obRSS

24 Nov

obSocialSubmit - Ping.FM works with no API requires

19 Nov

obHelpDesk 2.3 release - What's New?

Our Products

Resources

Earn with us

[ Affiliate Program ]

Get promotion news & updates