{"id":1324,"date":"2021-04-27T09:01:33","date_gmt":"2021-04-27T09:01:33","guid":{"rendered":"https:\/\/mellicloud.com\/?p=1324"},"modified":"2021-04-27T09:01:33","modified_gmt":"2021-04-27T09:01:33","slug":"joomla-vulnerablity-in-march-2021","status":"publish","type":"post","link":"https:\/\/mellicloud.com\/en\/news\/joomla-vulnerablity-in-march-2021\/1324\/","title":{"rendered":"Vulnerabilities Detected in Joomla! (March 2021)"},"content":{"rendered":"

\u062a\u0648\u0635\u06cc\u0647 \u0645\u06cc\u200c\u06a9\u0646\u06cc\u0645 \u0627\u06af\u0631 \u0627\u0632 \u0633\u06cc\u0633\u062a\u0645 \u0645\u062f\u06cc\u0631\u06cc\u062a \u0645\u062d\u062a\u0648\u0627\u06cc \u062c\u0648\u0645\u0644\u0627 \u0627\u0633\u062a\u0641\u0627\u062f\u0647 \u0645\u06cc\u200c\u06a9\u0646\u06cc\u062f\u060c \u0647\u0631\u0686\u0647 \u0633\u0631\u06cc\u0639\u200c\u062a\u0631 \u0622\u0646 \u0631\u0627 \u0628\u0647 \u0622\u062e\u0631\u06cc\u0646 \u0646\u0633\u062e\u0647 \u0628\u0647\u200c\u0631\u0648\u0632\u0631\u0633\u0627\u0646\u06cc \u06a9\u0646\u06cc\u062f.<\/p>\n

\u0622\u0633\u06cc\u0628\u200c \u067e\u0630\u06cc\u0631\u06cc LFI<\/h3>\n

\u0641\u06cc\u0644\u062a\u0631\u0647\u0627\u06cc \u0646\u0627\u06a9\u0627\u0641\u06cc \u062f\u0631 \u0645\u0627\u0698\u0648\u0644 Layout Settings\u060c \u0645\u0646\u062c\u0631 \u0628\u0647 \u0627\u062c\u0631\u0627\u06cc \u062d\u0645\u0644\u0647 Local File Inclusion \u0648 \u062e\u0648\u0627\u0646\u062f\u0646 \u0641\u0627\u06cc\u0644\u200c\u0647\u0627\u06cc \u062d\u0633\u0627\u0633 \u0633\u0627\u06cc\u062a \u0645\u06cc\u200c\u0634\u0648\u062f.<\/p>\n

\u062f\u0631\u062c\u0647 \u0627\u0647\u0645\u06cc\u062a: Low<\/p>\n

\u0646\u0633\u062e\u0647\u200c\u0647\u0627\u06cc \u0622\u0633\u06cc\u0628\u200c\u067e\u0630\u06cc\u0631: 3.0.0 – 3.9.25<\/p>\n

\u0631\u0627\u0647\u200c\u062d\u0644 \u0631\u0641\u0639 \u0645\u0634\u06a9\u0644: \u0622\u067e\u062f\u06cc\u062a \u0628\u0647 \u0646\u0633\u062e\u0647 3.9.26<\/p>\n

\u0622\u0633\u06cc\u0628 \u200c\u067e\u0630\u06cc\u0631\u06cc XSS<\/h3>\n

\u0628\u0647 \u062f\u0644\u06cc\u0644 escaping \u0646\u0627\u0645\u0646\u0627\u0633\u0628\u060c \u0627\u0645\u06a9\u0627\u0646 \u0627\u062c\u0631\u0627\u06cc \u062d\u0645\u0644\u0647 XSS \u0627\u0632 \u0637\u0631\u06cc\u0642 \u067e\u0627\u0631\u0627\u0645\u062a\u0631 logo \u0645\u0631\u0628\u0648\u0637 \u0628\u0647 template \u0647\u0627\u06cc \u067e\u06cc\u0634\u200c\u0641\u0631\u0636 \u062f\u0631 \u0635\u0641\u062d\u0627\u062a \u062e\u0637\u0627\u060c \u0648\u062c\u0648\u062f \u062f\u0627\u0631\u062f.<\/p>\n

\u062f\u0631\u062c\u0647 \u0627\u0647\u0645\u06cc\u062a: Low<\/p>\n

\u0646\u0633\u062e\u0647\u200c\u0647\u0627\u06cc \u0622\u0633\u06cc\u0628\u200c\u067e\u0630\u06cc\u0631: 3.0.0 – 3.9.25<\/p>\n

\u0631\u0627\u0647\u200c\u062d\u0644 \u0631\u0641\u0639 \u0645\u0634\u06a9\u0644: \u0622\u067e\u062f\u06cc\u062a \u0628\u0647 \u0646\u0633\u062e\u0647 3.9.26<\/p>\n

\u067e\u06cc\u0634\u06af\u06cc\u0631\u06cc \u06a9\u0646\u06cc\u062f<\/h3>\n

\u0631\u0627\u0647 \u062c\u0644\u0648\u06af\u06cc\u0631\u06cc \u0627\u0632 \u0628\u0631\u0648\u0632 \u0627\u06cc\u0631\u0627\u062f \u0627\u0645\u0646\u06cc\u062a\u06cc\u060c \u0628\u0631\u0627\u06cc \u0647\u0631 \u062f\u0648 \u0622\u0633\u06cc\u0628 \u067e\u0630\u06cc\u0631\u06cc \u06a9\u0634\u0641\u200c \u0634\u062f\u0647\u060c \u0628\u0633\u06cc\u0627\u0631 \u0633\u0627\u062f\u0647 \u0627\u0633\u062a. \u0641\u0642\u0637 \u06a9\u0627\u0641\u06cc \u0627\u0633\u062a \u0622\u0646\u200c\u0647\u0627 \u0631\u0627 \u0628\u0647 \u0622\u062e\u0631\u06cc\u0646 \u0646\u0633\u062e\u0647 \u0627\u0631\u0627\u0626\u0647\u200c\u0634\u062f\u0647 \u0622\u067e\u062f\u06cc\u062a \u06a9\u0646\u06cc\u062f.<\/p>\n

\u0642\u0628\u0644 \u0627\u0632 \u0627\u06cc\u0646\u06a9\u0647 \u062f\u06cc\u0631 \u0634\u0648\u062f \u0648 \u0633\u0627\u06cc\u062a\u200c\u062a\u0627\u0646 \u062f\u0631 \u062e\u0637\u0631 \u0628\u06cc\u0641\u062a\u062f\u060c \u0627\u0642\u062f\u0627\u0645 \u06a9\u0646\u06cc\u062f \u06a9\u0647 \u0628\u0639\u062f\u0627\u064b \u067e\u06cc\u0634\u0645\u0627\u0646 \u0646\u0634\u0648\u06cc\u062f.<\/p>","protected":false},"excerpt":{"rendered":"

\u062a\u0648\u0635\u06cc\u0647 \u0645\u06cc\u200c\u06a9\u0646\u06cc\u0645 \u0627\u06af\u0631 \u0627\u0632 \u0633\u06cc\u0633\u062a\u0645 \u0645\u062f\u06cc\u0631\u06cc\u062a \u0645\u062d\u062a\u0648\u0627\u06cc \u062c\u0648\u0645\u0644\u0627 \u0627\u0633\u062a\u0641\u0627\u062f\u0647 \u0645\u06cc\u200c\u06a9\u0646\u06cc\u062f\u060c \u0647\u0631\u0686\u0647 \u0633\u0631\u06cc\u0639\u200c\u062a\u0631 \u0622\u0646 \u0631\u0627 \u0628\u0647 \u0622\u062e\u0631\u06cc\u0646 \u0646\u0633\u062e\u0647 \u0628\u0647\u200c\u0631\u0648\u0632\u0631\u0633\u0627\u0646\u06cc \u06a9\u0646\u06cc\u062f. \u0622\u0633\u06cc\u0628\u200c \u067e\u0630\u06cc\u0631\u06cc LFI \u0641\u06cc\u0644\u062a\u0631\u0647\u0627\u06cc \u0646\u0627\u06a9\u0627\u0641\u06cc \u062f\u0631 \u0645\u0627\u0698\u0648\u0644 Layout Settings\u060c \u0645\u0646\u062c\u0631 \u0628\u0647 \u0627\u062c\u0631\u0627\u06cc \u062d\u0645\u0644\u0647 Local File Inclusion \u0648 \u062e\u0648\u0627\u0646\u062f\u0646 \u0641\u0627\u06cc\u0644\u200c\u0647\u0627\u06cc \u062d\u0633\u0627\u0633 \u0633\u0627\u06cc\u062a \u0645\u06cc\u200c\u0634\u0648\u062f. \u062f\u0631\u062c\u0647 \u0627\u0647\u0645\u06cc\u062a: Low \u0646\u0633\u062e\u0647\u200c\u0647\u0627\u06cc \u0622\u0633\u06cc\u0628\u200c\u067e\u0630\u06cc\u0631: 3.0.0 – 3.9.25 \u0631\u0627\u0647\u200c\u062d\u0644 \u0631\u0641\u0639 \u0645\u0634\u06a9\u0644: \u0622\u067e\u062f\u06cc\u062a \u0628\u0647 \u0646\u0633\u062e\u0647 …<\/p>","protected":false},"author":1,"featured_media":1325,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"_uag_custom_page_level_css":"","footnotes":""},"categories":[61,228],"tags":[256,257,258],"class_list":["post-1324","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-news","category-security","tag-joomla-security","tag---xss","tag-258"],"uagb_featured_image_src":{"full":["https:\/\/mellicloud.com\/main\/wp-content\/uploads\/2021\/04\/joomla-security.png",916,463,false],"thumbnail":["https:\/\/mellicloud.com\/main\/wp-content\/uploads\/2021\/04\/joomla-security-150x150.png",150,150,true],"medium":["https:\/\/mellicloud.com\/main\/wp-content\/uploads\/2021\/04\/joomla-security-300x152.png",300,152,true],"medium_large":["https:\/\/mellicloud.com\/main\/wp-content\/uploads\/2021\/04\/joomla-security-768x388.png",768,388,true],"large":["https:\/\/mellicloud.com\/main\/wp-content\/uploads\/2021\/04\/joomla-security.png",916,463,false],"1536x1536":["https:\/\/mellicloud.com\/main\/wp-content\/uploads\/2021\/04\/joomla-security.png",916,463,false],"2048x2048":["https:\/\/mellicloud.com\/main\/wp-content\/uploads\/2021\/04\/joomla-security.png",916,463,false],"trp-custom-language-flag":["https:\/\/mellicloud.com\/main\/wp-content\/uploads\/2021\/04\/joomla-security.png",18,9,false],"jannah-image-small":["https:\/\/mellicloud.com\/main\/wp-content\/uploads\/2021\/04\/joomla-security-220x150.png",220,150,true],"jannah-image-large":["https:\/\/mellicloud.com\/main\/wp-content\/uploads\/2021\/04\/joomla-security-390x220.png",390,220,true],"jannah-image-post":["https:\/\/mellicloud.com\/main\/wp-content\/uploads\/2021\/04\/joomla-security-780x463.png",780,463,true]},"uagb_author_info":{"display_name":"Admin","author_link":"https:\/\/mellicloud.com\/en\/author\/admin3207\/"},"uagb_comment_info":0,"uagb_excerpt":"\u062a\u0648\u0635\u06cc\u0647 \u0645\u06cc\u200c\u06a9\u0646\u06cc\u0645 \u0627\u06af\u0631 \u0627\u0632 \u0633\u06cc\u0633\u062a\u0645 \u0645\u062f\u06cc\u0631\u06cc\u062a \u0645\u062d\u062a\u0648\u0627\u06cc \u062c\u0648\u0645\u0644\u0627 \u0627\u0633\u062a\u0641\u0627\u062f\u0647 \u0645\u06cc\u200c\u06a9\u0646\u06cc\u062f\u060c \u0647\u0631\u0686\u0647 \u0633\u0631\u06cc\u0639\u200c\u062a\u0631 \u0622\u0646 \u0631\u0627 \u0628\u0647 \u0622\u062e\u0631\u06cc\u0646 \u0646\u0633\u062e\u0647 \u0628\u0647\u200c\u0631\u0648\u0632\u0631\u0633\u0627\u0646\u06cc \u06a9\u0646\u06cc\u062f. \u0622\u0633\u06cc\u0628\u200c \u067e\u0630\u06cc\u0631\u06cc LFI \u0641\u06cc\u0644\u062a\u0631\u0647\u0627\u06cc \u0646\u0627\u06a9\u0627\u0641\u06cc \u062f\u0631 \u0645\u0627\u0698\u0648\u0644 Layout Settings\u060c \u0645\u0646\u062c\u0631 \u0628\u0647 \u0627\u062c\u0631\u0627\u06cc \u062d\u0645\u0644\u0647 Local File Inclusion \u0648 \u062e\u0648\u0627\u0646\u062f\u0646 \u0641\u0627\u06cc\u0644\u200c\u0647\u0627\u06cc \u062d\u0633\u0627\u0633 \u0633\u0627\u06cc\u062a \u0645\u06cc\u200c\u0634\u0648\u062f. \u062f\u0631\u062c\u0647 \u0627\u0647\u0645\u06cc\u062a: Low \u0646\u0633\u062e\u0647\u200c\u0647\u0627\u06cc \u0622\u0633\u06cc\u0628\u200c\u067e\u0630\u06cc\u0631: 3.0.0 – 3.9.25 \u0631\u0627\u0647\u200c\u062d\u0644 \u0631\u0641\u0639 \u0645\u0634\u06a9\u0644: \u0622\u067e\u062f\u06cc\u062a \u0628\u0647 \u0646\u0633\u062e\u0647…","_links":{"self":[{"href":"https:\/\/mellicloud.com\/en\/wp-json\/wp\/v2\/posts\/1324","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/mellicloud.com\/en\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/mellicloud.com\/en\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/mellicloud.com\/en\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/mellicloud.com\/en\/wp-json\/wp\/v2\/comments?post=1324"}],"version-history":[{"count":1,"href":"https:\/\/mellicloud.com\/en\/wp-json\/wp\/v2\/posts\/1324\/revisions"}],"predecessor-version":[{"id":1326,"href":"https:\/\/mellicloud.com\/en\/wp-json\/wp\/v2\/posts\/1324\/revisions\/1326"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/mellicloud.com\/en\/wp-json\/wp\/v2\/media\/1325"}],"wp:attachment":[{"href":"https:\/\/mellicloud.com\/en\/wp-json\/wp\/v2\/media?parent=1324"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/mellicloud.com\/en\/wp-json\/wp\/v2\/categories?post=1324"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/mellicloud.com\/en\/wp-json\/wp\/v2\/tags?post=1324"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}