JOOMLA SECURITY ALERT PLEASE READ

If you are running JOOMLA on any of the DataWebPRO servers please
beware that both Joomla and Mambo have come under attack in the
past few weeks. This is a serious issue that can result in site
defacements to more serious account and server security breaches.
The first step you must take to secure your Joomla or Mambo
Installation is to upgrade to the latest version of Joomla
1.0.10. You can upgrade in one of two ways. If you performed your
installation from Fantastico in Cpanel, log back into Fantastico
and choose the Joomla installer. You should see an option to
upgrade. You can also visit http://joomla.org and download the
latest upgrade and perform it manually.

ALL JOOMLA ACCOUNTS MUST BE UPGRADED.

Read more at: http://www.datawebpro.net/alert and click on
latest news and... http://www.datawebpro.net/joomla

The problem isn’t so much with the Joomla application as it is
with the many modules and components developed for the program.
Most hacks are coming through outdated or compromised plugins.
Here is a short list of know plugins that are being used to
exploit Joomla. You need to check for updates of these plugins
and upgrade or remove them from your installation until a secure
version is announced.

* com_videodb < = 0.3en
* SMF Forum Mambo Component < = 1.3.1.3
* extcalendar < = 2.0
* com_loudmouth < = 4.0j
* pc_cookbook < = 0.3
* per_forms < = 1.0
* MiniBB < = 1.5a
* com_hashcash < =1.2.1
* HTMLarea3 < = 1.5
* Sitemap < = 2.0
* pollxt < = 1.22.07
* SimpleBoard < = 1.1.0
* com_forum < = 1.2.4 RC3
* galleria < = 1.0b
* Pearl for Mambo < = 1.6
* CBSMS < = 1.0
* Mambo Comspray (mospray) < = 1.8 RC1
* Mosets Tree < = 1.58
* com_multibanners (unknown version)
* BSQ Sitestats < = 2.1.0
* JoomlaLib < = 1.2.1 Beta
* OpenSEF 2.0.0 RC5
* Google PageRank Module < = v1
* JoomlaBoard < = 1.1.1
* PHP Event Calendar < = 1.4
* Advanced Poll < = 2.20
* Jombook (unknown version)

This is an additional list provided by Phil Taylor from his site at: http://www.datawebpro.net/alert and click on latest news.


extCalender
OpenSEF
phpBB Forum (com_forum)
SimpleBoard Forum
VideoDB
Mambo-SMF Forum
LoudMouth
PollXT
HashCash
perForms
Google Page Rank Module
BSQ SiteStats
MultiBanners
MiniBB
New Article Component
Advanced Poll
JomBok
ArtLinks
PCCookBook
Mambo/Joomla SiteMap (Custom Component)
Galleria
com_spray
 

Convenient
Payment Options

30 Day Money Back Guarantee
No long term contracts.
   
 

Testimonial

I was recommended to use your hosting services by a group of well-known and successful marketers and website builders.

I have no hesitation whatsoever in recommending your hosting services to anyone.

Regards,

Derek Tither
yourdollshouse.com
 
Resources
JV Manager Specials
Autoresponder
Link Cloaking
CB-Plugin
AdWord Generator
Article Equalizer
Blogging Equalizer
Press Equalizer
Top Keyword Data
RSS Equalizer
 
 
Opportunity
Passive Profit Streams
Affiliate Show Case
 
 
Accept Online Payments
2CheckOut
PayPal
ClickBank
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 

SECURITY MEASURES
After you upgrade Joomla Paste the following code in your
htaccess file. Check your site to make sure it’s still
functional.

########## Begin - Rewrite rules to block out some common exploits
#
# Block out any script trying to set a mosConfig value through the URL
RewriteCond %{QUERY_STRING} mosConfig_[a-zA-Z_]{1,21}(=|\%3D) [OR]
# Block out any script trying to base64_encode crap to send via URL
RewriteCond %{QUERY_STRING} base64_encode.*\(.*\) [OR]
# Block out any script that includes a <script> tag in URL
RewriteCond %{QUERY_STRING} (\<|%3C).*script.*(\>|%3E) [NC,OR]
# Block out any script trying to set a PHP GLOBALS variable via URL
RewriteCond %{QUERY_STRING} GLOBALS(=|\[|\%[0-9A-Z]{0,2}) [OR]
# Block out any script trying to modify a _REQUEST variable via URL
RewriteCond %{QUERY_STRING} _REQUEST(=|\[|\%[0-9A-Z]{0,2}) [OR]
# Block out any script that tries to set CONFIG_EXT (com_extcal2 issue)
RewriteCond %{QUERY_STRING} CONFIG_EXT(\[|\%20|\%5B).*= [NC,OR]
# Block out any script that tries to set sbp or sb_authorname via URL (simpleboard)
RewriteCond %{QUERY_STRING} sbp(=|\%20|\%3D) [OR]
RewriteCond %{QUERY_STRING} sb_authorname(=|\%20|\%3D)
# Send all blocked request to homepage with 403 Forbidden error!
RewriteRule ^(.*)$ index.php [F,L]
#
########## End - Rewrite rules to block out some common exploits

If you think you’ve been hacked or if you have questions please
submit a support ticket to: http://datawebpro-seo-hosting.com

Thank you,
Steve

=====================================

Steve Hetrick
DataWord Media Services

http://www.datawebpro.net
http://www.datawebpro-seo-hosting.com
http://www.adtrackresponderpro.com
http://www.datawebpro.net/goget
http://marketersunderground.com/blogsolutions
http://marketersunderground.com/rapidniche


1-888-537-6290

=====================================