Page 1 of 1

vulnerable extensions

Posted: Mon Nov 09, 2009 10:21 pm
by mandville
Today we have made the updated vulnerable extension list that was under construction a live document.
This is available at http://vel.joomla.org/
which has replaced the old list that has been archived.
Reports of vulnerable extensions can be reported to the JED or posted in a topic clearly showing a vulnerable extension report.

See http://forum.joomla.org/viewtopic.php?f=303&t=458968 for discussions. Thank you

Yes, this is a slight double post for obvious reasons. :-[

Re: vulnerable extensions

Posted: Tue Nov 10, 2009 2:27 pm
by dynamicnet
Greetings mandville:

{hugs} mandville.

If this is not a sticky here and in the security forum, can it please be made a sticky?

Can you also have it in the "Forum rules" section in both forums (i.e. near the http://docs.joomla.org/Category:Security_Checklist link)?

Thank you.

P.S. Can this also be added to http://www.joomla.org/download.html next to the extension directory link? Also posting the http://docs.joomla.org/Category:Security_Checklist link on the download page may also be helpful.

Re: vulnerable extensions

Posted: Tue Nov 10, 2009 3:12 pm
by mandville
yes, this post is a sticky in this sub forum. the link to the page has been added to various security documents and categories within the docs/wiki

Re: vulnerable extensions

Posted: Fri May 03, 2013 9:40 pm
by mandville
As of the 1st may, all vulnerable extensions must be reported via the new system at http://vel.joomla.org/submit-vel.html
all resolution/solved announcements from developers must also be placed there,
http://vel.joomla.org/extension-update-form.html
posting of any VEL items in this or the security forums will be pointed to the vel.joomla.org website as being the only place these will be dealt with.