Joomla!
®
About us
Joomla Home
What is Joomla?
Benefits & Features
Project & Leadership
Trademark & Licensing
The Joomla Foundation
Support us
Contribute
Sponsor
Partner
Shop
Download & Extend
Downloads
Extensions
Languages
Get a free site
Get a domain
Discover & Learn
Documentation
Training
Certification
Site Showcase
Announcements
Blogs
Magazine
Community & Support
Community Portal
Events
User Groups
Forum
Service Providers Directory
Volunteers Portal
Vulnerable Extensions List
Developer Resources
Developer Network
Security Centre
Issue Tracker
GitHub
API Documentation
Joomla!
Framework
Joomla! Extensions Directory™
Download
Launch
Home
Browse Extensions
Top Rated
Most Reviewed
New
Recently Updated
Compatible with J4
Search
Community
Meet the JED Team
Blog
JED Newsletter
Terms of Service
Help Joomla!
Support
Knowledgebase
Sponsor Joomla!
Vulnerable Extensions
About
Vulnerable Extensions
Resolved Extensions
Abandoned Extensions
Submit a Report
Submit an Update
Submit AbandonWare
JSON Feed
Log in
Register
Home
Vulnerable Extensions
Vulnerable Extensions
JB Bamboobox
JB Bamboobox
Details
Category:
Vulnerable Extensions
Published: 20 February 2013
Security checks missing - J1.5 all versions prior to 1.2.2 141111 All extensions available on the [joomlabamboo.com site have been updated] and this potential security issue has been resolved.
Authors:
Read more
http://docs.joomla.org/Vulnerable_Extensions_List#JB_Bamboobox
VEL Search
Search
Search
Vulnerable Extensions
YooRecipe, All, SQL Injection
publisher, 3.0.19, XSS (Cross Site Scripting)
paGO Commerce, 2.5.9.0, SQL Injection
Social Chat, 1.5 and Below, SQL Injection Iacopo Guarneri
hwdplayer,4.2,SQL Injection
Rapicode, Multiple Extensions, Back Door
Google Map Landkarten,4.2.3,SQL Injection
Fastball, SQL Injection
File Download Tracker,3.0,SQL Injection
SquadManagement,1.0.3,SQL Injection
Resolved Extensions
ZH Googlemap, 11.22.3.1, XSS (Cross Site Scripting)
ijoomla guru, , various
JUX Timetable, 1.0.4, SQL Injection
RealPin by Frumania, SQL, 1.5.04
JomSocial , 4.7.6, XSS (Cross Site Scripting)
JCE Pro, 2.8.15, xss
CMS2CMS Connector Extension, 2.0 , other
js jobs, 1.3, SQL Injection
xcloner,3.53,Other
fabrik 3.9,Various