July 2nd, 2006

Mambo and Joomla do the Chicken Dance

Posted by Richard Stiennon @ 7:32 am

Categories: Spyware, Stupid Criminal stories

Tags:

Netcraft is reporting that the opensource content management system Mambo and its errant step daughter Joomla both are vulnerable to simple SQL insertion attacks. This means that a hacker can use form fields to crack into the server hosting the website. Both sites have posted security updates. Mambo gives users two lines to add to the underlying PHP code.

There are thousands of sites, some large commercial operations, running these CMS systems. I am still waiting for the first round of Web 2.0 (Writely, 30boxes, etc.) vulns to be revealed. They are there. Just waiting to be discovered.

Richard Stiennon is an industry consultant. See his full profile and disclosure of his industry affiliations.

Talkback

SponsoredWhite Papers, Webcasts, and Downloads

VMware Infrastructure: A Guide to Bottom-Line Benefits VMware Frustrated by the costs of maintain ever larger data centers?or building ... Download Now
Email Security and Archiving - Clearer in the Cloud Google The time is NOW for businesses and organizations of all sizes to implement ... Download Now
Three Steps You Need to Know to Stop Data Loss Varonis Sensitive data exposed to misuse or loss... it is the stuff of nightmares ... Download Now

Blogs From Our Sponsors

Top Rated

Premier Vendor Content Whitepapers, webcasts & resources from our Power Center Sponsors

Favorite Links

Blogroll

ZDNet Blogs

White Papers, Webcasts, and Downloads

Why Isn't Server Virtualization Saving Us More? A Few Small Changes May Dramatically Increase Your Efficiency VMware Companies have rapidly adopted server virtualization over the past few ... Download Now
Email Security and Archiving - Clearer in the Cloud Google The time is NOW for businesses and organizations of all sizes to implement ... Download Now
Three Steps You Need to Know to Stop Data Loss Varonis Sensitive data exposed to misuse or loss... it is the stuff of nightmares ... Download Now

SmartPlanet

Thought-provoking progressive ideas on diverse topics that intersect with technology, business, and life, and matter to the world at large. Visit SmartPlanet
More from IBM
Can your business work smarter? Learn more about Lotus Symphony
Learn how to work smarter and optimize cost using the IBM Smart SOA approach Download the eBook
Smarter ways to make smarter products Read the brief from IBM

Threat Chaos

Richard Stiennon

July 2nd, 2006

Mambo and Joomla do the Chicken Dance

Talkback

SponsoredWhite Papers, Webcasts, and Downloads

Recent Entries

Blogs From Our Sponsors

Top Rated

Premier Vendor Content Whitepapers, webcasts & resources from our Power Center Sponsors

Archives

Favorite Links

Blogroll

ZDNet Blogs

White Papers, Webcasts, and Downloads

SmartPlanet

Blogs

Product Reviews

Videos

White Papers and Webcasts

Downloads

More

ZDNet News & Blogs

Product Reviews

Product Blogs

White Papers & Webcasts

Downloads

Threat Chaos

Richard Stiennon

July 2nd, 2006

Mambo and Joomla do the Chicken Dance

Talkback

SponsoredWhite Papers, Webcasts, and Downloads

Recent Entries

Blogs From Our Sponsors

Top Rated

Premier Vendor Content Whitepapers, webcasts & resources from our Power Center Sponsors

Keep up with ZDNet

Archives

Favorite Links

Blogroll

ZDNet Blogs

White Papers, Webcasts, and Downloads

SmartPlanet

Blogs

Product Reviews

Videos

White Papers and Webcasts

Downloads

More

ZDNet News & Blogs

Product Reviews

Product Blogs

White Papers & Webcasts

Downloads