CKForms Forums

The Joomla 1.5 Forms generator component
http://ckforms.cookex.eu/phpbb/

CKForms Security Issue is Spreading

http://ckforms.cookex.eu/phpbb/viewtopic.php?f=5&t=493

Page 1 of 1

CKForms Security Issue is Spreading

PostPosted: Sat Mar 20, 2010 7:28 am
by kiwi
Hi,
I have been watching the number of sites that have all been hacked via the SQL injection flaw reported a few days ago.

While CKForms works very well for us we have had to remove it immediately due to the fact that our test sites have been hacked and this component poses a very serious security flaw to our Joomla installs.

More details can be found here :
http://www.exploit-db.com/exploits/11785

I have full logs showing how this flaw is actively being used in the wild, particularly just how Turkish hackers are using this issue, and it can take less than 5 minutes to gain admin access into your site.

I have run this against some other friends Joomla sites and every single time the vunlerability suceeds without fail. Subsequently those friends have also removed CKForms.

Can we get an official response as to whats being done about these flaws? Even just an indication that something is being done.

If we cant see or hear anything we will all be forced to move our solutions elsewhere.

Skip
New Zealand

Re: CKForms Security Issue is Spreading

PostPosted: Sat Mar 20, 2010 11:10 am
by pedrino
Hi,

I fixed the security problem in the new release (1.3.4) you can download in the CKForms Site :

http://ckforms.cookex.eu/

Regards

Pierre

Re: CKForms Security Issue is Spreading

PostPosted: Wed Apr 07, 2010 12:51 pm
by aniuska
Hello,

I hope that last version (1.3.4) fix securities vulnerabilities. I have been attacked last week for Turkish group and spamming through CKForm. I would like to continue using this component.

Thanks,
Aniuska

Re: CKForms Security Issue is Spreading

PostPosted: Tue May 11, 2010 6:22 pm
by AlanDogg
Hi this security flaw still exists, i have been told by my server host that if i do not remove ck forms component he will shut down my sites that use it. This component has a serious security issues and i have already lost my own wesbite due to this badly written script.

Details from server host below

We can see from looking at the access logs that only a few minutes ago a
hacker tried to exploit the ckforms component.

195.228.152.176 - - [11/May/2010:14:36:07 +0100] "GET
/index.php?option=com_ckforms&view=ckforms&id=2&Itemid=53//index2.php?option
=com_forms&controller=../../../../../../../../../../../../../../../proc/self
/environ%00 HTTP/1.1" 200 677 "-" "libwww-perl/5.813"

You MUST remove this component and its possible threat ASAP or the account
will be terminated.

Im already using the new version 1.3.4

Re: CKForms Security Issue is Spreading

PostPosted: Wed May 19, 2010 3:11 am
by ahmad99
How to upgrade...?

Re: CKForms Security Issue is Spreading

PostPosted: Thu May 20, 2010 12:47 am
by doughboy
hi guys,

any updates about the latest version of ckforms?
has it been tested for vulnerability against sql injection?
All times are UTC
Page 1 of 1
Powered by phpBB © 2000, 2002, 2005, 2007 phpBB Group
http://www.phpbb.com/