{"id":6103,"date":"2015-12-18T16:11:45","date_gmt":"2015-12-18T16:11:45","guid":{"rendered":"https:\/\/ihs.com.tr\/blog\/?p=6103"},"modified":"2015-12-18T16:11:45","modified_gmt":"2015-12-18T16:11:45","slug":"joomla-yeni-bir-acigini-kapatti","status":"publish","type":"post","link":"https:\/\/www.ihs.com.tr\/blog\/joomla-yeni-bir-acigini-kapatti\/","title":{"rendered":"Joomla, yeni bir a\u00e7\u0131\u011f\u0131n\u0131 kapatt\u0131"},"content":{"rendered":"<p><span style=\"font-size: 14pt;\">Joomla bu hafta i\u00e7erisinde kritik bir <strong>&#8220;remote code execution&#8221; a\u00e7\u0131\u011f\u0131n\u0131 kapatan g\u00fcncelleme<\/strong> yay\u0131nlad\u0131. Bu son d\u00f6nemdeki ikinci kritik Joomla a\u00e7\u0131\u011f\u0131 oldu denilebilir.<\/span><\/p>\n<p><span style=\"font-size: 14pt;\">Pop\u00fcler bir Content Management System (CMS) olan Joomla&#8217;n\u0131n geli\u015ftiricilerine g\u00f6re bu a\u00e7\u0131k web taray\u0131c\u0131s\u0131ndaki baz\u0131 verileri veri taban\u0131na yazarken ortaya \u00e7\u0131k\u0131yordu ve<strong> Joomla&#8217;n\u0131n 1.5.0&#8217;dan 3.4.5&#8217;e kadar olan s\u00fcr\u00fcmleri bu a\u00e7\u0131\u011f\u0131 kaps\u0131yordu.<\/strong><\/span><\/p>\n<p><span style=\"font-size: 14pt;\">Joomla 3.4.6 ile birlikte bu a\u00e7\u0131k kapat\u0131lm\u0131\u015f oldu ve her ne kadar art\u0131k \u00f6m\u00fcrleri son bulmu\u015f olsa da 1.5 ve 2.5 s\u00fcr\u00fcmleri i\u00e7in de yamalar yay\u0131nland\u0131.<\/span><\/p>\n<p><span style=\"font-size: 14pt;\">Web g\u00fcvenlik firmas\u0131 Sucuri&#8217;nin a\u00e7\u0131klad\u0131\u011f\u0131na g\u00f6re <strong>12 Aral\u0131k&#8217;tan itibaren bu a\u00e7\u0131\u011f\u0131 kullanarak sistemlere s\u0131zmaya \u00e7al\u0131\u015fan sald\u0131r\u0131lar g\u00f6r\u00fclmeye ba\u015flanm\u0131\u015ft\u0131.\u00a0<\/strong>Sucuri&#8217;ye g\u00f6re sald\u0131r\u0131lar yo\u011fun olarak \u015fu IP adresleri \u00fczerinden yap\u0131lm\u0131\u015f: 74.3.170.33, 146.0.72.83, 194.28.174.106<\/span><\/p>\n<p><span style=\"font-size: 14pt;\"><a href=\"https:\/\/www.ihs.com.tr\/blog\/wp-content\/uploads\/2015\/12\/joomla.jpg\" data-rel=\"penci-gallery-image-content\" rel=\"attachment wp-att-6104\"><img decoding=\"async\" class=\"aligncenter size-full wp-image-6104\" src=\"https:\/\/www.ihs.com.tr\/blog\/wp-content\/uploads\/2015\/12\/joomla.jpg\" alt=\"joomla\" width=\"540\" height=\"230\" srcset=\"https:\/\/www.ihs.com.tr\/blog\/wp-content\/uploads\/2015\/12\/joomla.jpg 540w, https:\/\/www.ihs.com.tr\/blog\/wp-content\/uploads\/2015\/12\/joomla-300x128.jpg 300w\" sizes=\"(max-width: 540px) 100vw, 540px\" \/><\/a><\/span><\/p>\n<p><span style=\"font-size: 14pt;\">Neredeyse t\u00fcm Joomla sitelerinde bu a\u00e7\u0131k oldu\u011fu i\u00e7in 14 Aral\u0131k itibariyle sald\u0131r\u0131lar\u0131n hacmi de olduk\u00e7a b\u00fcy\u00fck boyutlara ula\u015fm\u0131\u015f ve sald\u0131rganlar da iyice cesaretlenmi\u015f. Joomla kullan\u0131c\u0131lar\u0131 User Agent log&#8217;lar\u0131 aras\u0131nda <strong>\u201cJDatabaseDriverMysqli\u201d veya\u00a0\u201cO:\u201d<\/strong> aramas\u0131 yaparak sitelerinin sald\u0131r\u0131ya u\u011fray\u0131p u\u011framad\u0131\u011f\u0131n\u0131 kontrol edebiliyorlar.<\/span><\/p>\n<p><span style=\"font-size: 14pt;\">Ge\u00e7ti\u011fimiz d\u00f6nemde de bir \u00e7ok sald\u0131r\u0131ya u\u011frayan Joomla, siber sald\u0131r\u0131lar\u0131n oda\u011f\u0131nda olan CMS platformlar\u0131ndan biri. Ancak h\u0131zl\u0131 g\u00fcncellemelerle Joomla ekibi de a\u00e7\u0131klar\u0131 kapatmaya gayret ediyor.<\/span><\/p>\n","protected":false},"excerpt":{"rendered":"<p>Joomla bu hafta i\u00e7erisinde kritik bir &#8220;remote code execution&#8221; a\u00e7\u0131\u011f\u0131n\u0131 kapatan g\u00fcncelleme yay\u0131nlad\u0131. Bu son d\u00f6nemdeki ikinci kritik Joomla a\u00e7\u0131\u011f\u0131 oldu denilebilir.&hellip;<\/p>\n","protected":false},"author":3,"featured_media":6105,"comment_status":"open","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[1],"tags":[],"class_list":["post-6103","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-haberler"],"amp_enabled":true,"_links":{"self":[{"href":"https:\/\/www.ihs.com.tr\/blog\/wp-json\/wp\/v2\/posts\/6103","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.ihs.com.tr\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.ihs.com.tr\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.ihs.com.tr\/blog\/wp-json\/wp\/v2\/users\/3"}],"replies":[{"embeddable":true,"href":"https:\/\/www.ihs.com.tr\/blog\/wp-json\/wp\/v2\/comments?post=6103"}],"version-history":[{"count":3,"href":"https:\/\/www.ihs.com.tr\/blog\/wp-json\/wp\/v2\/posts\/6103\/revisions"}],"predecessor-version":[{"id":6125,"href":"https:\/\/www.ihs.com.tr\/blog\/wp-json\/wp\/v2\/posts\/6103\/revisions\/6125"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/www.ihs.com.tr\/blog\/wp-json\/wp\/v2\/media\/6105"}],"wp:attachment":[{"href":"https:\/\/www.ihs.com.tr\/blog\/wp-json\/wp\/v2\/media?parent=6103"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.ihs.com.tr\/blog\/wp-json\/wp\/v2\/categories?post=6103"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.ihs.com.tr\/blog\/wp-json\/wp\/v2\/tags?post=6103"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}