Security announcement for Joomla! 1.5 - XML-RPC issue

After releasing Joomla! 1.5 stable we have discovered a high priority security issue. The vulnerability has been discovered in XML-RPC in combination with the blogger API. There is a security problem in this code that makes it possible to alter the articles on your site (including removal). This problems has been fixed currently by members of the development team and the Joomla! bug squad, solution is now available from Subversion. So what do you need to do until we release Joomla! 1.5.1?

Joomla!

Apart from Joomla!, i think Wordpress has also suffered the same security issue. If you are running Wordpress 2.3.x version, please head over to Wordpress site for an update.

Trackback URL for this post:

http://duvien.com/trackback/60
Submitted by duvien on Wed, 02/06/2008 - 00:25.
Tags:

Comments

Comment viewing options

Select your preferred way to display the comments and click "Save settings" to activate your changes.

Pingback

Submitted by http://www.duvien.com/security-announcement-joomla-15-xml-rp on Thu, 04/10/2008 - 16:23.

[...] writing a post about this entry http://www.duvien.com/security-announcement-joomla-15-xml-rpc-issue Stay [...]

Awesome

Submitted by Anonymous on Sun, 02/24/2008 - 23:01.

Is there a way to use this awesome plugin to play mp3 in a module position?

I think you have posted your

Submitted by duvien on Mon, 02/25/2008 - 08:34.

I think you have posted your comments in the wrong post?.

Anyway, i believe you are talking about loading 1pixelout player v123b into a module. This should actually work, follow these steps:

- create a new custom user module
- in the parameter where it says 'Mambot' select the radio button for 'Yes' and 'no' for the rest of the parameters.
- in your content area (text editor), type in {audio}folder_to_my_mp3s/my_file.mp3{/audio}

That should do the trick.

The above is referring to this post: http://www.duvien.com/onepixelout-player-ported-joomla-10x