Heads up folks, the following Joomla extensions have been shamed at milw0rm (yes, they posted exploit code too):
* Archaic Binary Gallery - directory traversal vulnerability * Kbase - SQL injection vulnerability So if you are using either, best disable them pronto, then ask questions later ;-) -- Mitch _______________________________________________ New York PHP SIG: Joomla! Mailing List http://lists.nyphp.org/mailman/listinfo/joomla NYPHPCon 2006 Presentations Online http://www.nyphpcon.com Show Your Participation in New York PHP http://www.nyphp.org/show_participation.php
