Form Maker versions before 3.6.0 XSS
Resolution: update to 3.6.0
Update notice: https://web-dorado.com/products/joomla-form.html...
Spider random articles versions before 1.5.3
Resolution: update to 1.5.3
Update notice: https://web-dorado.com/products/joomla-random.html...
EasySocial versions before 1.4.7: Code injection
Resolution: update to 1.4.7
Update notice: http://stackideas.com/blog/critical-update-for-easysocial-update-to-1-4-7-now...
Resize Image On The Fly and Cache - content plugin by s2software.it
Version 1.1.0 and likely all previous
Open folder permissions
Resolution: update to version 1.3.3
Existing users will need to manually fix the permissions of folder /images/cache to 755 or delete it in order to be recreated by the plugin with the proper permissions
Update notice:...
JNews, 8.5.1 and all previous,
SQL Injection
Resolution: update to 8.7.1
Update notice url: http://www.joobi.co/blog/jnews-8-7-released.html
Note that due to discrepancy in developer's code between package and repository, some versions of previous security release 8.6.1 are still vulnerable. Therefore users should make sure they update to 8.7.1 to...
k2, , Open folder permissions
developer release statement 2.6.7...