Adrien
Admin
Admin
Posts: 1084 | | Karma: 38
|
Re:"mailingid" SQL Injection - 2008/03/20 22:21
Four or five month ago, a user did an audit on his website and sent us this report. It was a very good resource for us to be able to make Acajoom much more secure. We worked a lot on that part for Acajoom 1.6.x (released four months ago I think) and Acajoom 2.0.x contains all those improvements and more.
We are aware about this sort of problem and we do our best to make secure application.
The security hole discovered by "fataku" on Acajoom 1.5.x or previous version has been fixed 3 months ago with Acajoom 1.6.x so we highly highly recommend to any user with this version or an older one to upgrade their component.
There is no known security issue in Acajoom 2.0.x.
Post edited by: Adrien, at: 2008/03/20 22:22
|
|
| | To post on the forum you need to sign in. |