Hi JW,

I have client whose site is still running on J! 1.0.15. He is using the AllVideos plugin version 2.5.4. Is there a way that I can obtain a copy of AllVideos for J! 1.0.15 that is not vulnerable to SQL injections. I read in this site that there was a version 3.3 which was released, but it's not clear if that will run on J! 1.0.15.

Okay, wait, I just read the following at Secunia :

'If you are using AllVideos v1.x or v2.x there is no security concern to upgrade. You are however advised to upgrade to v3.3 if using Joomla! 1.5 to enjoy all the new features introduced in the v3 series."

Does that still hold true?

Please advise,
railer

This is a very old issue that have been solved since ages... With the latest version of AllVideos for joomla 1.0.x you will not have any problem. Just go here and get it: code.google.com/p/joomlaworks/downloads/detail?name=plg_jw_allvideos-v2.5.4_j1.0.zip