Vulnerable Extension List

0 views
Skip to first unread message

Claire Mandville

unread,
Oct 11, 2009, 5:18:49 AM10/11/09
to Joomla! Community Working Group Leadership
is the any way - or suggestion for making the
http://docs.joomla.org/Vulnerable_Extensions_List
replicate on the forum (and updating it) as not may look in the docs
for the V List

i have replicated this in the site feedback forum

elin

unread,
Oct 13, 2009, 9:14:23 AM10/13/09
to Joomla! Community Working Group Leadership
I think the key is to have it linked from JED, but even more important
is coming up with a way of making it easier to update and maintain,
which probably means it needs to be on the JED since that's the best
database of extensions past and present.

Maybe 6 months ago there was a thread in the forum about how to make
the forums more user friendly and one suggestions was that the top
module with the forum rules include some other helpful links (like to
faqs and possibly some forum specific locations, like the beginner's
guide in the new to Joomla forum) and some other places. Nothing ever
seemed to come of it, but I still think that would be extremely
useful.

Elin

On Oct 11, 5:18 am, Claire Mandville <mandvi...@gmail.com> wrote:
> is the any way - or suggestion for making thehttp://docs.joomla.org/Vulnerable_Extensions_List

Claire Mandville

unread,
Oct 25, 2009, 10:33:31 AM10/25/09
to Joomla! Community Working Group Leadership
so
do we need to put this to a vote or something to get an implementation
for people to ignore more helpful links <grin>...

Brad Baker

unread,
Oct 25, 2009, 3:59:05 PM10/25/09
to Joomla! Community Working Group Leadership
The more I thin about this, the more having it on JED seems to me to
be the right place. Anyone from JED care to comment?

Lee Cher Yeong

unread,
Oct 27, 2009, 2:59:07 AM10/27/09
to joomla-wg...@googlegroups.com

We have discussed about having and maintaining the list at http://extensions.joomla.org
. The idea is to create a new component that list the vulnerabilities
and integrates with Mosets Tree at both ends. I plan to tackle this in
the coming weeks.

elin

unread,
Oct 27, 2009, 8:42:08 AM10/27/09
to Joomla! Community Working Group Leadership
One of the basic issues is vulnerable older versions. Since we
encourage people to be up to date on everything, I don't think that it
is needed to publish a list of all vulnerabliities an extension has
ever had. It would be good, perhaps, for a certain amount of time
after an extension has fixed a security issue to put some kind of tag
saying that sites below the current version should be upgraded
immediately.

Elin

On Oct 27, 2:59 am, Lee Cher Yeong <cy....@resources.joomla.org>
wrote:
> We have discussed about having and maintaining the list athttp://extensions.joomla.org
> >>> database of extensions past and present.- Hide quoted text -
>
> - Show quoted text -

Claire Mandville

unread,
Nov 3, 2009, 11:32:07 AM11/3/09
to Joomla! Community Working Group Leadership
It does need tidying up, but there is a current list here
http://docs.joomla.org/Vulnerable_Extensions_List_oct

Claire Mandville

unread,
Nov 12, 2009, 6:55:03 PM11/12/09
to Joomla! Community Working Group Leadership
I think i forgot to email out to everyone but a new comprehensive
list, and with Chris D's wiki help, the list has been made the primary
link at http://docs.joomla.org/Vulnerable_Extensions_List


Lee Cher Yeong - if you are still working on it and want to tie in
with that list, then feel free.

Elin/Brad - no more comments from other parties!

C

Brad Baker

unread,
Nov 12, 2009, 6:58:18 PM11/12/09
to joomla-wg...@googlegroups.com
I've not heard any other comments ;)

Thanks for your good work.
Reply all
Reply to author
Forward
0 new messages