Joomla 1.6 security issue and 1.7
-
-
- oceano
- Elite Rocketeer
- Posts: 635
- Thanks: 43
-
I received this:
Joomla! Security News
________________________________________
[20110701] - XSS Vulnerability
Posted: 19 Jul 2011 09:15 PM PDT
Project: Joomla!
SubProject: All
Severity: Medium
Versions: 1.6.5 and all earlier 1.6.x versions
Exploit type: XSS
Reported Date: 2011-July-11
Fixed Date: 2011-July-19
Description
Inadequate escaping leads to XSS vulnerability.
Affected Installs
Joomla! version 1.6.5 and all earlier 1.6.x versions
Solution
Upgrade to the latest Joomla! version (1.7.0 or later)
Reported by Aung Khant
Contact
The JSST at the Joomla! Security Center.
It's mean that the 1.6 is finish, what about RT template from now?
Thank you
-
-
-
- accuracymktg
- Rocketeer
- Posts: 70
- Thanks: 0
- yeah, I'm curious as to J 1.7 themes/ templates as well.
- accuracy marketing
-
-
-
- JEM
- Preeminent Rocketeer
- Posts: 17917
- Thanks: 4
-
Templates are rarely a cause for concern as far as security goes.
Keep your Joomla versions up to date and you should be all set.
www.rockettheme.com/forum/index.php?f=92...paint&rb_v=viewtopic - Thanks,
jim
-
-
-
- oceano
- Elite Rocketeer
- Posts: 635
- Thanks: 43
-
No Jem, what I mean is if we have only to update to 1.7 and the template can work or we need to wait that the RT make some adjustment?
I know that RT templat don't give security problem at all:D
Thank you
-
-
-
- JEM
- Preeminent Rocketeer
- Posts: 17917
- Thanks: 4
-
To upgrade to J1.7, you need at least J1.6.5
DanG wrote:Joomla upgrades are independent of Rockettheme files other than when they make a dramatic change in how they do things and it messes up our coding.
I've upgraded a few Rockettheme 1.6 templates to 1.7 without any issue. Since Juxta is an Rockettheme template, I wouldn't see any issues.
I would get Akeeba backup and backup your existing site.
Then my understanding is that from any Joomla1.6.x you have to upgrade to Joomla 1.6.5 first and then from there upgrade to Joomla 1.7 - Thanks,
jim
-
-
-
- W Shealy
- Hero Rocketeer
- Posts: 256
- Thanks: 2
-
-
-
- Alex Devine
- Elite Rocketeer
- Posts: 547
- Thanks: 0
-
W Shealy wrote:
Warning: Invalid argument supplied for foreach() in /home/libraries/gantry/core/gantryplatform.class.php on line 104
I'm getting an error on my test site.
Wallace
You need the latest version of Gantry. - Last Edit: 9 years 4 months ago by Kat05.
-
-
-
- oceano
- Elite Rocketeer
- Posts: 635
- Thanks: 43
-
Ok, i just install the 1.7 and a fresh install of reflex, is just a little bit more slow but seem that all work
. In 1.7 you can retrive the latest update, it's work whit all RT product .
Hope this help
-
-
-
- Kat05
- Preeminent Rocketeer
- Posts: 25898
- Thanks: 334
-
W Shealy wrote:
Warning: Invalid argument supplied for foreach() in /home/libraries/gantry/core/gantryplatform.class.php on line 104hi there,
I'm getting an error on my test site.
Wallace
just had a look at your site but do not see that error, did you upgrade gantry and now it's solved or did you just set 'error reporting' to none?
kat
- Last Edit: 9 years 4 months ago by Kat05.
- Kat05 / QA Lead & Support / Germany
-
-
-
- Tarek Garcia
- Newbie
- Posts: 7
- Thanks: 0
-
Had the same problem.
it goes away by upgrading the granty framework
-
Time to create page: 0.062 seconds