Joomla Extensions Demo

Support

Do not submit a bug report if you need technical support or have questions.

Forums

Post your suggestions ask for help in the community forums

Contact Me

Missing images/links, any comments, suggestions, need help? Contact me

Download

Skype

Need desperately help?
Skype Me™! But dont abuse of it!
You are here: Home Joomla Security

Joomla 1.5.15 Released

The Joomla Project announces the immediate availability of Joomla 1.5.15 [Wojmamni ama mamni]. It has been three months since Joomla 1.5.14 was released on July 30, 2009.

The Development Working Group's goal is to continue to provide regular, frequent updates to the Joomla community.

Download

Click here to download Joomla 1.5.15 (Full package) »
Click here to find an update package. »
Comments
Category: Security
Published Date
Written by Administrator
Hits: 5838
  • Print

Preventing SQL Injection Attacks on your Joomla! Websites

This article is extracted from:
Joomla! Web Security

Secure your Joomla! website from common security threats with this easy-to-use guide

image004
  • Learn how to secure your Joomla! websites
  • Real-world tools to protect against hacks on your site
  • Implement disaster recovery features
  • Set up SSL on your site
  • Covers Joomla! 1.0 as well as 1.5

    • For more information, please visit:
    http://www.PacktPub.com/joomla-web-security-guide/book

    Joomla!, a very popular content management system (CMS) is as you may know an easy-to-deploy-and-use content management system. This ease of use has lent itself to rapid growth of both the CMS and extensions for it. You can install it on almost any host, running Linux or Windows. This highly versatile software has found itself in such lofty places as large corporate web portals, and humble places such as the simple blog.

    Joomla! itself is inherently safe, but misconfigurations of the CMS, vulnerable components, hosts that are poorly configured, and weak passwords can all contribute to the downfall of your site. Hence, it's always better to ensure the security of your site.

    In this article by Tom Canavan, we will take a look at how SQL injection attacks can occur to your Joomla website, how we can test for SQL injection attacks, and how to stop SQL injection.

    Introduction

    Mark Twain once said, "There are only two certainties in life-death and taxes." Even in web security there are two certainties: It's not "if you are attacked", but "when and how" your site will be taken advantage of.

    There are several types of attacks that your Joomla! site may be vulnerable to such as CSRF, Buffer Overflows, Blind SQL Injection, Denial of Service, and others that are yet to be found.

    The top issues in PHP-based websites are:

    • Incorrect or invalid (intentional or unintentional) input
    • Access control vulnerabilities
    • Session hijacks and attempts on session IDs
    • SQL Injection and Blind SQL Injection
    • Incorrect or ignored PHP configuration settings
    • Divulging too much in error messages and poor error handling
    • Cross Site Scripting (XSS)
    • Cross Site Request Forgery, that is CSRF (one-click attack)
    Comments

    Read more: Preventing SQL Injection Attacks on your Joomla! Websites

    Category: Security
    Published Date
    Written by Administrator
    Hits: 7491
    • Print

    Donations

    Thank You for supporting my work
    Subscribe to me on YouTube

    Latest Articles

    • Joomla Mootools and jQuery Compatibility
      Joomla Mootools and ...
      In this series of post I will outline some common techniques to help Joomla extensions development. As you know Jooml... ...
    • cedTag 2.5.3 for J2.5 Released
      cedTag 2.5.3 for J2....
      CedTag  has been updated to version 2.5.3 and correct a lot of bugs and contains some nice features. CedTag is t... ...
    • cedThumbnails 2.5.5 for J2.5 Released
      cedThumbnails 2.5.5 ...
      CedThumbnails has been updated to version 2.5.5 and contains 1 new features for both Joomla 1.7 and Joomla 2.5. For ex... ...
    • cedSmugmug 2.5.2 for J2.5 Released
      cedSmugmug 2.5.2 for...
      CedSmugmug  has been updated to version 2.5.2 and correct some bugs and contains some nice features. CedSmugmug&... ...
    • Dropbox Dropquest chapter 1
      Dropbox Dropquest ch...
      If you want an extra gigabyte of storage on your Dropbox account, the online cloud service invites you to compete in i... ...

    Subscribe

    Latest Comments

    Popular Posts

    • Media Center with XBMC
      Media Center with XB...
      HowTo transform your xBox into a Media Center with XBMCXboxMediaCenter is a free open source (GPL) multimedia player for...
    • 404
      404
      SORRY - 404 File Not Found Error The page you were looking for appears to have been moved, deleted or does not exis...
    • Dumb as ... a pitbull
      Dumb as ... a pitbul...
      African Porcupine against a bull terrier, the bull terrier was not smart enough to stop, and guess how it now look li...
    • Add a harddisk led to Your XBOX
      Add a harddisk led t...
      Add a led to your Xbox to see hard disk activity This mod is quite risky, especially if youcan not solder with precis...
    • Do it Yourself: change your PS3 optical lens
      Do it Yourself: chan...
      Guide how to replace PS3 Laser Lens           version 1.0 Attent...

    Feeds

    rockettheme advertisement

    dropbox logo

    My OSS Projects at

    Help Us & Leave Feedback!

    • Do you have an excellent article idea you would like to read about here? Share it!
    • Do you have some interesting tips how we could improve our site?
    • Something missing here? Help us make this blog a better place, leave feedback!
    We would love to hear from you! Be active! Write us now!

    Recommended Site