Replies: 7 comments 2 replies
-
I see here Javascript variable obfuscation and maybe vendor was hacked? or has a malicious intent to embed a backdoor in the code. |
Beta Was this translation helpful? Give feedback.
-
Joomla community stays outside of political debates. |
Beta Was this translation helpful? Give feedback.
-
Let me make a request regarding the exclusion of the possibility of displaying political statements in the CMS code. Our community has always been apolitical, and to maintain this principle we ask that changes be made accordingly. Given the growing threat of CMS hacking, we are concerned about the security of our platform and ask for your attention and support. |
Beta Was this translation helpful? Give feedback.
-
Joomla CMS should stay out of politics. And by this all third-party connections in the kernel should preferably be checked and not to make a mistake. |
Beta Was this translation helpful? Give feedback.
-
How can you vote for “the best CMS of the year” after this? |
Beta Was this translation helpful? Give feedback.
-
Maybe security problem with this vendor, need to be checked by Security team. |
Beta Was this translation helpful? Give feedback.
-
I don't see any difference between shipped code and code in GitHub. |
Beta Was this translation helpful? Give feedback.
-
Please check these files in 4 and 5 releases.
\libraries\vendor\voku\portable-ascii\src\voku\helper\ASCII.php
\libraries\vendor\voku\portable-utf8\src\voku\helper\UTF8.php
Javascript variables are also obfuscated in the files.
https://github.com/voku/portable-utf8/blob/master/CHANGELOG.md#604-2022-03-08
Beta Was this translation helpful? Give feedback.
All reactions