An update for MyBlog for Joomla 1.5 has just been released. This patch addresses an issue where an attacker may read any arbitrary file within the server, if the php process has a full read access to those files.

Web Traffic Services

 

MyBlog users are advised to update immediately to the latest MyBlog 3.0.332 or follow the instruction in the Azrul blog post  to apply the patch.

 

Web Traffic Services

http://www.azrul.com

 

Security Patch For MyBlog 3.0 (Joomla Extension)