I am using Chronoforms for my site. Someone messaged me about a loophole in it. He was able to access a JS file using URL - domain/administrator/components/com_chronoforms/form_actions/auto_javascript_validation/assets/auto_javascript_validation.js
I just wanted to know if this really is a loophole? Does it make my site vulnerable to attacks?
Please help.
I just wanted to know if this really is a loophole? Does it make my site vulnerable to attacks?
Please help.
Hi linpar,
You can access just about any JavaScript file on just about any site if you know where to look (check the page source). What is the vulnerability that your friend thinks this creates?
Bob
You can access just about any JavaScript file on just about any site if you know where to look (check the page source). What is the vulnerability that your friend thinks this creates?
Bob
This topic is locked and no more replies can be posted.
