J!Extensions Store™
Forum
Welcome, Guest
Please Login to access forum.
Re:SQL Injection detected in VM plugin (1 viewing) 
Go to bottom
TOPIC: Re:SQL Injection detected in VM plugin
#4940
Slava TH
Fresh Boarder
Posts: 6
User Offline
SQL Injection detected in VM plugin Karma: 0  
Joomla 1.5 + VM 1.1
JSitemap PRO 2.0.3
trying to show products in shop, add "VM1 Products" as source.
Trying to change any field and save - get the 500 error "SQL injection detected"
How do avoid it?
 
Logged Logged  
  The administrator has disabled public write access.
#4941
John Dagelmore
Admin
Posts: 3716
User Online Now
Re:SQL Injection detected in VM plugin Karma: 79  
You have probably a system plugin installed (maybe RS Firewall or Marco's SQL injection) that when saving the data source detect the SQL string used for the configuration query.
Add an exception to that plugin or unpublish it BEFORE saving the data source.
 
Logged Logged  
  The administrator has disabled public write access.
#4942
Slava TH
Fresh Boarder
Posts: 6
User Offline
Re:SQL Injection detected in VM plugin Karma: 0  
No such plugins are installed. Checked them all. Only have sh404sef built-in security, but it switched off for a long time.
 
Logged Logged  
  The administrator has disabled public write access.
#4943
John Dagelmore
Admin
Posts: 3716
User Online Now
Re:SQL Injection detected in VM plugin Karma: 79  
As far as I know this is a feature of rs firewall,sh404sef is unrelated.

But if you have not security plugins installed in Joomla contact the hosting provider maybe you have firewall installed on the server.
 
Logged Logged  
  The administrator has disabled public write access.
#4949
Slava TH
Fresh Boarder
Posts: 6
User Offline
Re:SQL Injection detected in VM plugin Karma: 0  
Found the reason. It was EasyCalcCheck plugin.
 
Logged Logged  
  The administrator has disabled public write access.
Go to top