Webentwicklung

Akeeba Backup ist eine Komponente zum sichern einer kompletten Joomla! Installation incl. der Datenbank und der Dateien, die aus der altbekannten und bewährten Komponente Joomlapack hervorgegangen ist. So kann eine komplette Joomla! Webseite auf Mausklick zuverlässig gesichert und wieder hergestellt werden - auf dem gleichen Server oder einem beliebigen anderen, der die Voraussetzungen für den Betrieb von Joomla! erfüllt.

Dropbox ist ein Filehosting-Dienst, der bis zu 2 GB Speicherplatz im Internet kostenlos zur Verfügung stellt. Mit Akeeba Backup Professional können Sie ein Backupprofil einrichten und diesen Speicherplatz automatisch für Backups nutzen. Der von Dropbox zur Verfügung gestellte Desktop-Client ermöglicht zudem eine einfache Verwaltung Ihrer Backup-Dateien.

Dazu zählen z.B. Web Application Firewalls (WAF), die auch kostenlos erhältlich sind und durchaus einen sinnvollen, zusätzlichen Schutz bieten können. Zumindest kann sogenannten 'Script-Kiddies' der Spass deutlich erschwert werden.

Joomla (hervorgegangen aus dem Open Source Projekt Mambo) ist ein freies Content-Management-System (CMS) zur Erstellung von Webseiten und steht unter der GNU General Public License. Es ist in der aktuellen Version 3.6.5 in PHP 5 geschrieben und verwendet MySQL als Datenbank. Zusammen mit WordPress, TYPO3 und Drupal gehört es zu den bekanntesten und meistverwendeten Open-Source-Content-Management-Systemen.

  • AllVideos v6.0.0 released - now Joomla 4 compatible!

    Blog - JoomlaWorks Jan 17, 2020 | 18:26 pm

    AllVideos v6.0.0 released - now Joomla 4 compatible! Version 6.0.0 of AllVideos is now available. This is a feature release, which also introduces full support with the upcoming Joomla version 4 release.Here's what's been added or changed in this new release of AllVideos:Fully compatible with the upcoming Joomla[…]

    Read more...
  • Simple Image Gallery (free) v4.0.0 released - now Joomla 4 compatible!

    Blog - JoomlaWorks Jan 11, 2020 | 19:13 pm

    Simple Image Gallery (free) v4.0.0 released - now Joomla 4 compatible! Simple Image Gallery (free) version 4.0.0 is now available to download. This marks our first extension update that supports the upcoming Joomla version 4 (currently in "beta").Here's what's been added or changed in Simple Image Gallery (free) with the release[…]

    Read more...
  • RadioWave v1.2.0 released

    Blog - JoomlaWorks Jan 8, 2020 | 20:37 pm

    RadioWave v1.2.0 released RadioWave v1.2.0 has just been released. This is a bugfix and feature-improvement release.Here's what's been added or changed in RadioWave with the release of v1.2.0:Fixed time parsing for the OnAir template override (K2 Content module) which caused the module's output[…]

    Read more...
  • SocialConnect v1.10.0 released

    Blog - JoomlaWorks Jan 7, 2020 | 17:12 pm

    SocialConnect v1.10.0 released SocialConnect v1.10.0 is now available to download for subscribers. This new release improves compatibility with recent API changes in Facebook and LinkedIn.Here's what's been added or changed in SocialConnect with the release of v1.10.0:Facebook authorization in SocialConnect's settings will now[…]

    Read more...
  • AllVideos v5.2.0 released

    Blog - JoomlaWorks Dec 20, 2019 | 19:43 pm

    AllVideos v5.2.0 released Version 5.2.0 of AllVideos is now available. This is a bugfix release and it also improves compatibility with PHP 7.4.Here's what's been added or changed in this new release of AllVideos:Improves PHP 7.4 compatibility.Fixes the "loop" control for HTML5 media[…]

    Read more...
  • [20191201] - Core - Path Disclosure in framework files

    Security Announcements Dec 16, 2019 | 14:00 pm

    Project: Joomla!SubProject: CMSImpact: LowSeverity: LowVersions: 3.8.0 - 3.9.13Exploit type: Path DisclosureReported Date: 2019-November-22Fixed Date: 2019-December-17CVE Number: CVE-2019-19845DescriptionMissing access check in framework files could lead to a path disclosure.Affected InstallsJoomla! CMS versions 3.8.0 - 3.9.13SolutionUpgrade to version 3.9.14ContactThe JSST at the Joomla![…]

    Read more...
  • [20191202] - Core - Various SQL injections through configuration parameters

    Security Announcements Dec 16, 2019 | 14:00 pm

    Project: Joomla!SubProject: CMSImpact: HighSeverity: LowVersions: 2.5.0 - 3.9.13Exploit type: SQL injectionReported Date: 2019-December-01Fixed Date: 2019-December-17CVE Number: CVE-2019-19846DescriptionThe lack of validation of configuration parameters used in SQL queries caused various SQL injection vectors.Affected InstallsJoomla! CMS versions 2.5.0 - 3.9.13SolutionUpgrade to version 3.9.14ContactThe JSST[…]

    Read more...
  • K2 v2.10.2 released - now with a 100% mobile-friendly backend user interface!

    blog Dec 11, 2019 | 23:02 pm

    K2 v2.10.2 released - now with a 100% mobile-friendly backend user interface! K2 v2.10.2 is now available to download for Joomla versions 1.5 to 3.x. This is a maintenance & security release: it concludes the backend user interface changes that were introduced with v2.10.0 and is now 100% mobile-friendly and it also addresses[…]

    Read more...
  • Retiring the K2 templates section

    blog Dec 8, 2019 | 17:05 pm

    Retiring the K2 templates section As we're preparing to launch a new website for getk2.org, we have decided to make an important change in the K2 Extensions Directory (KED).We stopped accepting new entries for templates in the KED about 2 weeks ago and this week[…]

    Read more...
  • Simple Image Gallery Pro v3.7.0 released

    Blog - JoomlaWorks Dec 2, 2019 | 14:47 pm

    Simple Image Gallery Pro v3.7.0 released Simple Image Gallery Pro v3.7.0 is now available to download for subscribers. This new release introduces 2 additional popup engines (modals) and improves compatibility with K2 v2.10.x.Here's what's been added or changed in Simple Image Gallery Pro with the release of[…]

    Read more...
  • K2 v2.10.1 released

    blog Nov 26, 2019 | 19:17 pm

    K2 v2.10.1 released K2 v2.10.1 is now available to download for Joomla versions 1.5 to 3.x. This is a maintenance release that addresses a few bugs that were introduced with v2.10.0 released a couple weeks ago and we urge everyone using v2.10.0 to[…]

    Read more...
  • K2 v2.10.0 released

    blog Nov 15, 2019 | 02:04 am

    K2 v2.10.0 released K2 v2.10.0 is now available to download for Joomla versions 1.5 to 3.x. This release introduces a refreshed backend design as well as feature improvements or additions (like Google Structured Data) and as always, performance improvements everywhere.To install K2 for[…]

    Read more...
  • [20191001] - Core - CSRF in com_template overrides view

    Security Announcements Nov 5, 2019 | 14:00 pm

    Project: Joomla!SubProject: CMSImpact: HighSeverity: LowVersions: 3.2.0-3.9.12Exploit type: CSRFReported Date: 2019-October-10Fixed Date: 2019-November-05CVE Number: CVE-2019-18650DescriptionA missing token check in com_template causes a CSRF vulnerability.Affected InstallsJoomla! CMS versions 3.2.0 - 3.9.12SolutionUpgrade to version 3.9.13ContactThe JSST at the Joomla! Security Centre.Reported By: Lee[…]

    Read more...
  • [20191002] - Core - Path Disclosure in phpuft8 mapping files

    Security Announcements Nov 5, 2019 | 14:00 pm

    Project: Joomla!SubProject: CMSImpact: LowSeverity: LowVersions: 3.6.0 - 3.9.12Exploit type: Path DisclosureReported Date: 2019-November-01Fixed Date: 2019-November-05CVE Number: CVE-2019-18674DescriptionMissing access check in the phputf8 mapping files could lead to an path disclosure.Affected InstallsJoomla! CMS versions 3.6.0 - 3.9.12SolutionUpgrade to version 3.9.13ContactThe JSST at[…]

    Read more...
  • [20190901] - Core - XSS in logo parameter of default templates

    Security Announcements Sep 24, 2019 | 15:00 pm

    Project: Joomla!SubProject: CMSImpact: ModerateSeverity: LowVersions: 3.0.0-3.9.11Exploit type: XSSReported Date: 2019-August-28Fixed Date: 2019-September-24CVE Number: CVE-2019-16725DescriptionInadequate escaping allowed XSS attacks using the logo parameter of the default templates.Affected InstallsJoomla! CMS versions 3.0.0 - 3.9.11SolutionUpgrade to version 3.9.12ContactThe JSST at the Joomla! Security[…]

    Read more...
  • AllVideos v5.1.0 released - now with Twitch support

    Blog - JoomlaWorks Sep 5, 2019 | 14:23 pm

    AllVideos v5.1.0 released - now with Twitch support Version 5.1.0 of AllVideos is now available, adding support for Twitch and fixing a couple of bugs introduced in v5.0.0.Here's what's been added or changed in this new release of AllVideos:AllVideos now supports Twitch as a 3rd party video provider. You[…]

    Read more...
  • [20190801] - Core - Hardening com_contact contact form

    Security Announcements Aug 13, 2019 | 15:00 pm

    Project: Joomla!SubProject: CMSImpact: ModerateSeverity: LowVersions: 1.6.2 - 3.9.10Exploit type: Incorrect Access ControlReported Date: 2019-April-09Fixed Date: 2019-August-13CVE Number: CVE-2019-15028DescriptionInadequate checks in com_contact could allowed mail submission in disabled forms.Affected InstallsJoomla! CMS versions 1.6.2 - 3.9.10SolutionUpgrade to version 3.9.11ContactThe JSST at the[…]

    Read more...
  • AllVideos v5.0.0 released - now with web-native media playback

    Blog - JoomlaWorks Jul 31, 2019 | 17:25 pm

    AllVideos v5.0.0 released - now with web-native media playback We have just released a major update to AllVideos, version 5.0.0, for Joomla versions 1.5 to 3.x.It introduces web-native media playback with no 3rd party dependencies.Here's what's been added or changed in this new release of AllVideos:AllVideos now supports web-native media only (for[…]

    Read more...
  • Kiji & nuModusVersus updated to v1.1.0 - sunsetting NewsWorth, Nokkori, Tamashi & The Conversationalist

    Blog - JoomlaWorks Jul 27, 2019 | 10:09 am

    Kiji & nuModusVersus updated to v1.1.0 - sunsetting NewsWorth, Nokkori, Tamashi & The Conversationalist Both Kiji & nuModusVersus have just been updated to v1.1.0. These are bugfix and feature-improvement releases.Here's what's been added or changed in both Kiji & nuModusVersus with the release of v1.1.0:Lots of K2 related fixes/improvements including: use the new K2 modal introduced in v2.9.0,[…]

    Read more...
  • [20190701] - Core - Filter attribute in subform fields allows remote code execution

    Security Announcements Jul 9, 2019 | 15:00 pm

    Project: Joomla!SubProject: CMSImpact: ModerateSeverity: LowVersions: 3.9.7 - 3.9.8Exploit type: Remote Code ExecutionReported Date: 2019-June-20Fixed Date: 2019-July-09CVE Number: CVE-2019-14654DescriptionInadequate filtering allows users authorised to create custom fields to manipulate the filtering options and inject an unvalidated option.Affected InstallsJoomla! CMS versions 3.9.7[…]

    Read more...
  • Simple Image Gallery Pro v3.6.7 released

    Blog - JoomlaWorks Jul 8, 2019 | 19:20 pm

    Simple Image Gallery Pro v3.6.7 released Simple Image Gallery Pro v3.6.7 is now available to download for subscribers. This is a bugfix release.Here's what's been added or changed in Simple Image Gallery Pro with the release of v3.6.7:Resolve a permissions check in Joomla versions between 3.0.0 and 3.5.0, which[…]

    Read more...
  • [20190601] - Core - CSV injection in com_actionlogs

    Security Announcements Jun 11, 2019 | 02:00 am

    Project: Joomla!SubProject: CMSImpact: LowSeverity: LowVersions: 3.9.0 through 3.9.6Exploit type: CSV InjectionReported Date: 2019-April-29Fixed Date: 2019-June-11CVE Number: CVE-2019-12765DescriptionThe CSV export of com_actionslogs is vulnerable to CSV injection.Affected InstallsJoomla! CMS versions 3.9.0 through 3.9.6SolutionUpgrade to version 3.9.7ContactThe JSST at the Joomla! Security[…]

    Read more...
  • [20190602] - Core - XSS in subform field

    Security Announcements Jun 11, 2019 | 02:00 am

    Project: Joomla!SubProject: CMSImpact: ModerateSeverity: LowVersions: 3.6.0 through 3.9.6Exploit type: XSSReported Date: 2019-January-01Fixed Date: 2019-June-11CVE Number: CVE-2019-12766DescriptionThe subform fieldtype does not sufficiently filter or validate input of subfields, this leads to XSS attack vectors.Affected InstallsJoomla! CMS versions 3.6.0 through 3.9.6SolutionUpgrade to[…]

    Read more...
  • [20190603] - Core - ACL hardening of com_joomlaupdate

    Security Announcements Jun 11, 2019 | 02:00 am

    Project: Joomla!SubProject: CMSImpact: LowSeverity: LowVersions: 3.8.13 through 3.9.6Exploit type: Incorrect Access ControlReported Date: 2019-April-10Fixed Date: 2019-June-11CVE Number: CVE-2019-12764DescriptionThe update server URL of com_joomlaupdate can be manipulated by non Super-Admin users.Affected InstallsJoomla! CMS versions 3.8.13 through 3.9.6SolutionUpgrade to version 3.9.7ContactThe JSST[…]

    Read more...
  • K2 v2.9.0 released

    blog Sep 21, 2018 | 18:14 pm

    K2 v2.9.0 released K2 v2.9.0 is now available to download for Joomla 1.5 to 3.x. In short, this release improves compatibility with the latest releases of Joomla 3.8.x & improves frontend performance overall.To install K2 for the first time or update your existing[…]

    Read more...
  • Rapicode, Multiple Extensions, Back Door

    Live VEL Mar 30, 2018 | 20:30 pm

    Rapicode, nultiple extensions, current versions, back doorExtensions affected are:-Rapi Content TickerRapi Content CarouselRapi Cookie ConsentRapi CountdownRapi PreloaderRapi Loading Progress BarRapi Page AnimateAt the moment the back door seems to be loading mining code, it can be used to load arbitrary[…]

    Read more...
  • Google Map Landkarten,4.2.3,SQL Injection

    Live VEL Mar 15, 2018 | 23:48 pm

    Google Map Landkarten from joomla-24.de, versions 4.2.3 and previous, SQL Injection

    Read more...
  • Fastball, SQL Injection

    Live VEL Mar 8, 2018 | 18:25 pm

    Fastball by Fastball Productions, versions yet to be determined but probably all, SQL Injection

    Read more...
  • File Download Tracker,3.0,SQL Injection

    Live VEL Mar 8, 2018 | 06:41 am

    File Download Tracker by techsolsystem.com, 3.0, SQL Injection

    Read more...
  • Simple Calendar,3.1.9,SQL Injection

    Live VEL Mar 7, 2018 | 18:26 pm

    Simple Calendar by Fabrizio Albonico, versions 3.1.9 and previous, SQL Injection

    Read more...
  • SquadManagement,1.0.3,SQL Injection

    Live VEL Mar 7, 2018 | 18:04 pm

    SquadManagement by Lars Hildebrandt, versions 1.0.3 and previous, SQL Injection

    Read more...
  • JMS Music,1.1.1,SQL Injection

    Live VEL Mar 5, 2018 | 17:08 pm

    JMS Music by Joomasters, versions 1.1.1 and previous, SQL Injection

    Read more...
  • JS Autoz ,1.0.9,SQL Injection

    Live VEL Mar 3, 2018 | 20:14 pm

    JS Autoz by Joomsky.com, 1.0.9 and previous, SQL Injection

    Read more...
  • Realpin,1.5.04,SQL Injection

    Live VEL Mar 1, 2018 | 19:07 pm

    Realpin by Marcel Törpe, versions 1.5.04 and previous, SQL Injection

    Read more...
  • Joomla! Pinterest Clone Social Pinboard,2.0,SQL Injection

    Live VEL Feb 28, 2018 | 19:37 pm

    Joomla! Pinterest Clone Social Pinboard from apptha.com, 2.0, multiple SQL Injection vulnerabilities

    Read more...
  • K2 v2.8.0 released

    blog Aug 18, 2017 | 14:59 pm

    K2 v2.8.0 released K2 v2.8.0 is now available to download for Joomla 1.5 to 3.x. This release improves the content management workflow and UI, is fully compatible with PHP 7.x and the latest Joomla 3.7.x, while at the same time addressing various issues from[…]

    Read more...
  • K2 v2.7.1 released

    blog Aug 4, 2016 | 03:12 am

    K2 v2.7.1 released K2 v2.7.1 is now available to download for Joomla 1.5 to 3.x. This is a minor release addressing various issues from performance to UI, to bug fixes and security.To install K2 for the first time or update your existing K2[…]

    Read more...
  • K2 Plugin for sh404SEF

    Updated Extensions - JoomlaWorks Mar 29, 2016 | 15:34 pm

    K2 Plugin for sh404SEF A plugin for supporting K2 in sh404SEF.Use the plugin to configure K2 URLs when using sh404SEF in a multitude of options.Unlike the previous built-in implementation for sh404SEF, this new plugin provides new URL manipulation options and it has dual compatibility[…]

    Read more...
  • K2 v2.7.0 released

    blog Mar 18, 2016 | 06:26 am

    K2 v2.7.0 released Start your update engines! K2 v2.7.0 is now available to download for Joomla 1.5 to 3.x. With a new improved user interface for the component in the Joomla backend, updated and now responsive-friendly default HTML overrides, Joomla 3.5 support, PHP[…]

    Read more...
  • K2 Next to be presented in JoomlaDay Brasil 2015

    blog Aug 31, 2015 | 18:14 pm

    K2 Next to be presented in JoomlaDay Brasil 2015 (originally posted in the JoomlaWorks blog) It's been a while, I know. You see, Joomla is not the only organization undergoing changes. So are we :)We are happy to announce that K2 Next will be officially presented in the upcoming JoomlaDay[…]

    Read more...
  • Video course on K2 for Joomla 3

    blog Mar 10, 2015 | 18:59 pm

    Video course on K2 for Joomla 3 Hi everyone. I'm Antonio Mercurio from Italy. I'm passioned about opensource software such as Joomla, Drupal, Wordpress and many others. I made a video course on K2 for Joomla 3 in Italian on the Udemy platform. The video course is[…]

    Read more...
  • SocialConnect

    Updated Extensions - JoomlaWorks Jan 23, 2013 | 15:06 pm

    SocialConnect SocialConnect is the only Joomla extension that allows you to integrate your Joomla site with social networks and identity providers for user authentication, posting content directly to social networks and 3rd-party comment system integration.FeaturesLet your users register to your website[…]

    Read more...
  • K2

    Updated Extensions - JoomlaWorks Nov 5, 2012 | 23:00 pm

    K2 K2 is the popular powerful content extension for Joomla with CCK-like features. It provides an out-of-the box integrated solution featuring rich content forms for items (think of Joomla articles with additional fields for article images, videos, image galleries and attachments),[…]

    Read more...
  • Disqus Comments (for Joomla)

    Updated Extensions - JoomlaWorks Jul 25, 2012 | 23:00 pm

    Disqus Comments (for Joomla) Disqus Comments (for Joomla) integrates the Disqus comments system & service into any Joomla based website. Disqus (pronounced 'discuss') is a service and tool for web comments and discussions - currently the most popular comments-as-a-service provider worldwide. It makes commenting[…]

    Read more...
  • Simple RSS Feed Reader

    Updated Extensions - JoomlaWorks Jul 11, 2012 | 23:00 pm

    Simple RSS Feed Reader Adding RSS/Atom syndicated content inside your Joomla website is now super-easy and simple with the 'Simple RSS Feed Reader' module from JoomlaWorks. All you have to do is add a few feeds to the module parameters, publish the module in[…]

    Read more...
  • Frontpage SlideShow

    Updated Extensions - JoomlaWorks Jul 11, 2012 | 23:00 pm

    Frontpage SlideShow Now fully responsive & Joomla 1.5 - 3.x compatible! Frontpage SlideShow is the easiest & most eye-catching way to display your featured articles or products in your Joomla website. It creates an uber cool slideshow with text snippets laying on[…]

    Read more...
  • Simple Image Gallery Pro

    Updated Extensions - JoomlaWorks Jul 11, 2012 | 23:00 pm

    Simple Image Gallery Pro NEW VERSION 3.7.0 released in December 2019!Adding image galleries inside your Joomla articles has never been easier! Using the "Simple Image Gallery PRO" extension from JoomlaWorks you can quickly display a folder of images on your server as a stylish[…]

    Read more...
  • Simple Image Gallery

    Updated Extensions - JoomlaWorks Jul 11, 2012 | 23:00 pm

    Simple Image Gallery Adding image galleries inside your Joomla articles is now super-easy and simple, using the magical "Simple Image Gallery" plugin for Joomla. The plugin can turn any folder of images located inside your Joomla website into a grid-style image gallery with[…]

    Read more...
  • AllVideos

    Updated Extensions - JoomlaWorks Jul 11, 2012 | 23:00 pm

    AllVideos AllVideos (by JoomlaWorks) is the universal media player for Joomla and a classic must-have extension for any Joomla based website.Use the plugin to easily embed video & audio content from all major 3rd party media providers (YouTube, Vimeo, Dailymotion, Twitch,[…]

    Read more...

Aufgrund der Popularität und bekannter Sicherheitsprobleme werden Joomla-Installationen immer wieder zur Zielscheibe von Angriffen, insbesondere in Form sogenannter Defacements. Laut einer IBM-Studie aus dem Jahr 2008 ist die Zahl der Sicherheitslücken bei Webapplikationen allerdings generell drastisch angestiegen, so dass prinzipiell alle Systeme von diesem Problem betroffen sind. Insbesondere WordPress ist in dieser Hinsicht mindestens genauso gefährdet.

Share This

Follow Us

Managed Dedicated Server 120x600

Go to top