Login or create new account.

By registering on joomprod.com, you will have immediate access to all our free products and to the public side of our support forum.

Enjoy our subscriptions.

Each of our subscriptions allow you to enjoy the private side of the support forum and all the update of our products for a period ranging from 3 months to 1 year.

Payment And immediate download.

After subscribing to one of our subscription, the products are immediately downloadable.


Or Register
Accueil / News / Security Issue - File Upload Vulnerability on OLD version

Latest News Blog

AdsManager - End of life

It is with great regrets that we have chosen to end the developpement of Adsmanager and its other associated components.

AdsManager is born 10 years ago and, as of today, the number of new subscriptions and downloads have fallen and we cannot maintain the component anymore.

All active subscribers will be able to continue enjoying support until the end of their subscription.

The components will be free and no support will be provided anymore for the other users.


An old issue fixed 1 year ago has been published on several websites these latest days.

This issue allow user to upload and execute some php code. This issue appears between version 2.6 and 2.9.13.

This article is just to tell you that you don't have any problem with your current AdsManager if version is >= 2.9.13.

So every one using version under 2.9.13 should upgrade to recent version. (which should be done like any software all the time)

In any case, if you want to secure your old version you can apply this quick fix or contact us per email (support@juloa.com)

in components/com_adsmanager/controller.php

In function upload() just after

// Clean the fileName for security reasons
$fileName = preg_replace('/[^\w\._]+/', '', $fileName);


$ext = strrpos($fileName, '.');
                $fileName_b = strtolower(substr($fileName, $ext+1));
                if (!in_array($fileName_b,array("jpg","jpeg","gif","png"))) {