Introduction

Site Security

This plugin adds a simple but, in most cases, fondamental protection against SQL injection and LFI (local files inclusion) attacks. It checks data sent to Joomla and intercepts a lot of common exploits, saving your site from hackers.

  • Favourite
  • Report

  • Filters requests in POST, GET, REQUEST and blocks SQL injection / LFI attempts.
  • Notifies you by e-mail when a alert is generated.
  • Protect also from unKnown 3rd Party extensions vulnerability.
  • White list for safe components (at your risk ;) )
  • automatic ip blocking on attack

Enable mail report and prepare yourself to be scared!

Anyway remember that security it is a 'forma mentis', not a plugin!

HISTORY

Version 1.4 Apr 28th, 2014:
* minor code fixes (not security related)
* default table type set by DB engine
* table creation by sql install file

Version 1.2 Mar 26th, 2013:
* Joomla! 3.0 compatility & coding style
* try - catch table checking
* InnoDB table support
* it works fine, nothing else to do on J2.5 ;)

Version 1.1 (Mar 10th, 2011)
* ip auto banning on attack (ip blocking)
* RegEx improvements to intercept more SQL attacks

Version 1.0 (Jan 7st, 2011)
* Joomla! v1.6 compatibility
* send mail also when error is raised
* minor code optimization

Version .98a (Jun 1st, 2010) Thanks to Jeff
* fixed backtics matching
* fixed union all matching
* fixed ....// exploit
* added more info to report mail

Version .98 (May 29th, 2010)
first release.

Please, keep in mind, I repeat: this plugin intercepts a lot of common exploits, not ALL!! this should be intended as an help, this is not "THE SOLUTION".

Very useful



Posted on 26 March 2018
Functionality
Prevent SQL injections
Ease of use
Very easy for use
Support
Documentation
Functionality
Excellent plugin. It has protected many of our websites from hacker attacks.
Ease of use
Very simple.
Support
Not needed.
Documentation
Sufficient.
I used this to: It has protected many of our websites from hacker attacks.
Whoever has broken up his website, he knows what I'm talking about.
I can only recommend to any webmaster who wants to sleep peacefully. :)

Very Handy!



Posted on 03 June 2017
Functionality
Works effortlessly
Ease of use
Activate, done! Configuration of finer details available. Would be nice to have a selector for components to ignore though.
Support
Not needed any, although I have seen errors on PHP 7 so it would be great if it could be updated to support that
I used this to: Additional layer of security

Helpfull, free, worked for me.



Posted on 20 December 2016
Functionality
Easy and smooth. After being hacked installed this and attemps of next atack failed. Next day. Good something like this exist free for small
Ease of use
websites

Facil de usar



Posted on 15 August 2016
Functionality
No me ha dado problemas al instalarlo aunque no entiendo bien como funciona.
Ease of use
muy fácil

Simple and Easy



Posted on 11 June 2016
Functionality
Not too sure yet and hoping I don't have to find out. Will update of course.
Ease of use
Simple! Very easy to install, head go to plugins, configure basic settings (probably just email address and IP block) and enable. Done.
Documentation
Simple enough to use without but more than enough information around if you run into problems (you probably won't though)
I used this to: A number of private and commercial websites.
Functionality
Was working as expected but I start getting a database error in all FaceBook share extensions.
Invalid syntax w/MariaDB server in mi_iptable
Ease of use
Very easy to setup
Documentation
Good
I used this to: Extra security layer
Owner's reply: ops! sorry for missing support :(
try to post a comment, I'll replay as soon as possible.
please note: don't try to submit revealed attack code or the post will be blocked by the plugin!

Great Plugin



Posted on 11 May 2016
Functionality
Easy to setup and just works.
Ease of use
Works straight away.
I used this to: Hacking is getting worse so this plugin is a must have to protect yourself against malicious attacks. After being hacked it took quite some time to root out all the injected code. Now I have peace of mind seeing that their attempts are being blocked.
Functionality
Just install the plugin and periodically you'll receive a notification of hacking attemp with hacking code highlighted.
Ease of use
Install and activate. You may found usefull to receive email notifications like I do.
Support
Documentation

Excellente plugin !



Posted on 10 January 2016
Functionality
I love the option to be advise by email from attack.
I verify the correspondance between alert and the access.log and it is true
Ease of use
We have only to activate the plugin and review the setting.
We can receive notification by email (it's work well!)
Support
No need for support because it is easy to use
Documentation
Perhaps more international documentation could be appreciate (In English)
I used this to: I had a BIG problem with JS Injected attack on all my web site since December 2015.
I did a lot a improvement without be able to stop it.
I find a manual way to rescue my web sites, but I wasn't able to avoid it, I was searching for monitoring tools when I find it.

ottimo plugin!



Posted on 05 August 2015
Functionality
Ottimo plugin, lo uso da molti anni in vari siti.
Appena qualcuno tenta di ... mi avvisa per mail.
Grazie
Ease of use
Molto facile da installare e da configurare.
Support
Documentation

Very useful extension



Posted on 01 August 2015
Functionality
This is really great extension. It not only informs you if there is hacking attempt, but it can prevent most of them.
Ease of use
Just enable plugin and turn on email notification (if you need to be in touch)
Support
Extension very great, so i never necessary to contact support.
Documentation
All main features and preferences described very well on developer site.
I used this to: to be in touch if anyone trying hack my site.
Marco's Google(TM) bot access
Free

Marco's Google(TM) bot access

By marco maria leoni
Site Access
This plugin allows to spiders and robots, like Google(TM), MSNBot(TM) or Yahoo(TM), to access the pages of the site reserved to the 'Registered' users. Sometimes you have to protect interesting contents to get users' registration for commercial purposes or simply to create a community. But if content are not accessible, how can users know about their existance? With this plugin the search engine...
Marco's noFollow
Free

Marco's noFollow

By marco maria leoni
SEO & Metadata
This plugin allows you to add "rel" and "target" attributes to all outgoing links in articles on your Joomla!, so you can avoid to disperse the Page Rank on the web by setting the attribute rel = "nofollow" on all outbound links, and you can keep visitors on your site by setting the target = "_blank" attribute. Configuration is very easy, simply select the action to be taken for the two attribute...
Marco's parallax background scroller
Free

Marco's parallax background scroller

By marco maria leoni
Page Background
A plugin for parallax background scrolling in Joomla! This is a nice background scrolling effect with a simulation of a pseudo parallax effect. You can insert one or more image in your articles and define an horizontal stripe (view port) to see the images as they was really a landscape through a window. See this plugin in action! Features . Easy to use and configure . CSS3 and responsive . plugi...
Marco's buy me a beer
Free

Marco's buy me a beer

By marco maria leoni
Donations
This implementation of Buy me a beer in Joomla!, is a smart & funny way to get a donation without the need to specify ethical reasons: "Do you think my job was useful? Ok, buy me a beer, I just wanna have a drink, not save the world!" Features works on multilingual site; every text in the donation form can translated using Joomla's language override feature; automatic PayPal's interface languag...
Marco's PrestaShop Authentication
Free

Marco's PrestaShop Authentication

By marco maria leoni
Site Access
This plugin allows to customers of a PrestaShop™ e-commerce to access the Joomla! site without a new registration. This is a fast authentication bridge between the two systems. Prestashop to Joomla bridgeThis plugin allows to use an existent PrestaShop e-commerce to authenticate its users on a Joomla installation. Features plugin works on J2.5 and J3.x sites; no need of double registration;...

Marco's SQL Injection

Version:
1.4
Developer:
marco maria leoni
Date added:
Nov 18 2014
License:
GPLv2 or later
Type:
Free download
Includes:
p
Compatibility:
3
Download

This extension does NOT implement the Joomla! Update System

Score:


Write a review