Joomla Core - SQL Injection vulnarablity

  • Project: Joomla!
  • SubProject: CMS
  • Severity: High
  • Versions: 3.1.0 through 3.2.2
  • Exploit type: SQL Injection
  • Reported Date: 2014-February-06
  • Fixed Date: 2014-March-06
  • CVE Number: Pending

Description

Inadequate escaping leads to SQL injection vulnerability.

Affected Installs

Joomla! CMS versions 3.1.0 through 3.2.2

Solution

Upgrade to version 3.2.3

ангилал: | (0) comments | send

How to install OpenERP on CentOS

OpenERP is an open-source enterprise resource planning (ERP) software and alternative to the paid ERP software. OpenERP installation is bit tedious but on CentOS 6.x version, it becomes very easy. CentOS 6.x is recommended for using OpenERP as the packages required for OpenERP are easily available.

Let us see how to install OpenERP:

1)

ангилал: Open source | (0) comments | send

OpenERP 7.0 installation script for CentOS 6

#!/bin/sh
# Modified script from Carlos E. Fonseca Zorrilla
yum -y install wget unzip
rpm -ivh http://dl.fedoraproject.org/pub/epel/6/i386/epel-release-6-8.noarch.rpm
rpm -ivh http://yum.pgrpms.org/9.2/redhat/rhel-6-i386/pgdg-centos92-9.2-6.noarch.rpm
yum -y install python-psycopg2 python-lxml PyXML python-setuptools libxslt-python pytz \
     
ангилал: Open source | (0) comments | send

RIP Ubuntu Edge, but Ubuntu is still coming to smartphones in 2014

Ubuntu Edge, close up render

The Ubuntu Edge, a smartphone that doubles up as as a desktop PC when docked, has unsurprisingly failed to meet its funding goal of $32 million. As the Indiegogo campaign drew to a close at midnight last night, the Edge had raised just $12.8 million — a massive funding deficit of just over $19 million. Canonical is fairly stoic about its failure,
ангилал: | (0) comments | send

MacPhone Air: Mark Shuttleworth predicts Apple will merge Mac and iPhone

OS X Launchpad

Anyone that has been paying attention to the evolution of OS X and iOS will have at some point noticed that the two operating systems are slowly acting more like each other. Mark Shuttleworth, founder of Canonical who recently attempted to crowdfund the Ubuntu Edge phone that would double as a desktop PC, has certainly noticed Apple’s seemingly
ангилал: | (0) comments | send

Did you say… SECURITY????


Not more than 2 weeks ago, I have been around @ CISCO Live event in Milan, the industry’s premier education and training workshop.

Lazy walking around, I had a very interesting coffee with Giuseppe Paternò (aka Gippa): he was there on the behalf of Canonical (he was in charge to talk about OpenStack), but really our chat turn immediately

ангилал: | (0) comments | send

Mark Shuttleworth interview: Taking Ubuntu beyond desktops

He may have stepped back from the CEO role at Canonical, but Mark Shuttleworth is still very much the public face of Ubuntu.

He suffered a setback earlier this year when the crowdfunded Ubuntu Edge project – in which he invested a lot of personal capital, if not actual money – failed to get anywhere near its ambitious investment target.

ангилал: Linux | (0) comments | send

New year, new website: the new canonical.com

We’ve been talking about it for a while and we are now happy to reveal Canonical’s brand new website.

The brief

We thought that it was more than appropriate that, in the year that Canonical commemorates its 10th anniversary, our website got some love, so that’s exactly what we set out to do.

Canonical on devicesThe homepage of the new canonical.com on

ангилал: Linux | (0) comments | send

CES 2014 Trends: The Weird and the Wonderful

Devices ranging from the sublime to the strange are debuting this week at International CES 2014.

Products unveiled at the show suggest growing trends toward wearable health-tracking products and increased human-gadget interaction. There's a bed, for example, that tells owners how they slept the previous night and what they can do to sleep better

ангилал: | (0) comments | send