Joomla! Googlemaps plugin vulnerability.....
Geplaatst door Mike-Support Helpburo.eu aan 20-11-2014 11:31
Joomla! Googlemaps plugin vulnerability
The problem with the Joomla! Googlemaps plugin lies in the fact anyone can request the /plugins/system/plugin_googlemap2_proxy.php in their browser or script, to execute cURL HTTP requests to remote websites.
Update: Removing the plugin helps only to remove the XSS vulnerability, but NOT the overload problem, as still botnets will try to access the plugin. You should also add the following in the top of your .htaccess file in the main Joomla directory: