Page 1 of 1

vulnerable extensions

Posted: Mon Nov 09, 2009 10:21 pm
by mandville
Today we have made the updated vulnerable extension list that was under construction a live document.
This is available at
which has replaced the old list that has been archived.
Reports of vulnerable extensions can be reported to the JED or posted in a topic clearly showing a vulnerable extension report.

See for discussions. Thank you

Yes, this is a slight double post for obvious reasons. :-[

Re: vulnerable extensions

Posted: Tue Nov 10, 2009 2:27 pm
by dynamicnet
Greetings mandville:

{hugs} mandville.

If this is not a sticky here and in the security forum, can it please be made a sticky?

Can you also have it in the "Forum rules" section in both forums (i.e. near the link)?

Thank you.

P.S. Can this also be added to next to the extension directory link? Also posting the link on the download page may also be helpful.

Re: vulnerable extensions

Posted: Tue Nov 10, 2009 3:12 pm
by mandville
yes, this post is a sticky in this sub forum. the link to the page has been added to various security documents and categories within the docs/wiki

Re: vulnerable extensions

Posted: Fri May 03, 2013 9:40 pm
by mandville
As of the 1st may, all vulnerable extensions must be reported via the new system at
all resolution/solved announcements from developers must also be placed there,
posting of any VEL items in this or the security forums will be pointed to the website as being the only place these will be dealt with.