Joomla! Extensions Directory™

Download
Launch

Marco's SQL Injection

56 reviews
Get Marco's SQL Injection (v1.4)
logo

Introduction

Site Security

This plugin adds a simple but, in most cases, fondamental protection against SQL injection and LFI (local files inclusion) attacks. It checks data sent to Joomla and intercepts a lot of common exploits, saving your site from hackers.

  • Filters requests in POST, GET, REQUEST and blocks SQL injection / LFI attempts.
  • Notifies you by e-mail when a alert is generated.
  • Protect also from unKnown 3rd Party extensions vulnerability.
  • White list for safe components (at your risk ;) )
  • automatic ip blocking on attack

Enable mail report and prepare yourself to be scared!

Anyway remember that security it is a 'forma mentis', not a plugin!

HISTORY

Version 1.4 Apr 28th, 2014:
* minor code fixes (not security related)
* default table type set by DB engine
* table creation by sql install file

Version 1.2 Mar 26th, 2013:
* Joomla! 3.0 compatility & coding style
* try - catch table checking
* InnoDB table support
* it works fine, nothing else to do on J2.5 ;)

Version 1.1 (Mar 10th, 2011)
* ip auto banning on attack (ip blocking)
* RegEx improvements to intercept more SQL attacks

Version 1.0 (Jan 7st, 2011)
* Joomla! v1.6 compatibility
* send mail also when error is raised
* minor code optimization

Version .98a (Jun 1st, 2010) Thanks to Jeff
* fixed backtics matching
* fixed union all matching
* fixed ....// exploit
* added more info to report mail

Version .98 (May 29th, 2010)
first release.

Please, keep in mind, I repeat: this plugin intercepts a lot of common exploits, not ALL!! this should be intended as an help, this is not "THE SOLUTION".

Write a review

Great Plugin



Posted on 18 June 2014
This plug in has protected my personal sites after losing one to a sql injection attack.



Thanks

A useful plg



Posted on 21 February 2014
A eally useful plugin, helps a lot to prevent attacks on the DB.

Although the assistance is timely and of high quality.

For sure I would recommend it to a friend

Hackers didn't succeed this time



Posted on 31 January 2014
I have tried to find an effective method to prevent, or at least hinder SQL injection attacks from wannabe script jockeys, so far this plugin has stopped two such attacks. I like the idea of IP blocking. It's a shame that so many wannabe hackers are using automated Pen-testing software to find vulnerabilities. none more so observed than that on WordPress and older Joomla installation. I have no errors to report on the functionality of this great plugin (as yet) and encourage the use of this plugin to anyone looking for FREE SQL injection protection. Keep up the good work Dev'. 5 Stars!

Excellent and A Must Have Plugin



Posted on 08 January 2014
Its Really Really a Great Plugin, i have experimented with all possibilities to hack, and its worked excellent, It will give you a detailed report and also you can set the time for temporary Banning of IP.

Thanks for sharing such a great plugin.

Wow



Posted on 08 August 2013
This blocks POST, GET, REQUEST and blocks SQL injections.



There will be detailed report, with attempt string, and hacker's IP.

I try to report each attack at projecthoneypot



Report looks like:

** Local File Inclusion (and string)



*REMOTE_ADDR

*HTTP_USER_AGENT

*REQUEST_METHOD

*QUERY_STRING



** SUPERGLOBALS DUMP

*$_GET DUMP

*$_POST DUMP

*$_COOKIE DUMP



This plugin Rocks and Roll

Thanks!!!



Posted on 02 May 2013
Very Good Extension... Saved me a lot of trouble tracing potential attacks, and avoiding them.

What I need



Posted on 25 April 2013
Thanks for this extension, is exactly what I needed.

It works perfect.

Thanks a lot



Posted on 06 April 2013
Great plugin, very effective and easy to set. Thanks a lot

Works well



Posted on 15 August 2012
I was having difficulty getting a passing grade with GoDaddy's Website Protection Service regarding SQL injection and XSS.



I discovered this extension, installed and set it up, and passed the security screen on its next scheduled scan.



It works as advertised...thanks much!

Great module for joomla 1.5.26



Posted on 10 June 2012
what a fantastic little plug-in for joomla

easy to install and configure and does exactly what it says on the tin so to speak !

keep up the great work
Marco's Google(TM) bot access
Free

Marco's Google(TM) bot access

By marco maria leoni
Site Access
This plugin allows to spiders and robots, like Google(TM), MSNBot(TM) or Yahoo(TM), to access the pages of the site reserved to the 'Registered' users. Sometimes you have to protect interesting contents to get users' registration for commercial purposes or simply to create a community. But if content are not accessible, how can users know about their existance? With this plugin the search engine...
5
2 reviews
J3
Marco's noFollow
Free

Marco's noFollow

By marco maria leoni
SEO & Metadata
This plugin allows you to add "rel" and "target" attributes to all outgoing links in articles on your Joomla!, so you can avoid to disperse the Page Rank on the web by setting the attribute rel = "nofollow" on all outbound links, and you can keep visitors on your site by setting the target = "_blank" attribute. Configuration is very easy, simply select the action to be taken for the two attribute...
4.5
15 reviews
J3
Marco's parallax background scroller
Free

Marco's parallax background scroller

By marco maria leoni
Page Background
A plugin for parallax background scrolling in Joomla! This is a nice background scrolling effect with a simulation of a pseudo parallax effect. You can insert one or more image in your articles and define an horizontal stripe (view port) to see the images as they was really a landscape through a window. See this plugin in action! Features . Easy to use and configure . CSS3 and responsive . plugi...
4.5
5 reviews
J3
Marco's buy me a beer
Free

Marco's buy me a beer

By marco maria leoni
Donations
This implementation of Buy me a beer in Joomla!, is a smart & funny way to get a donation without the need to specify ethical reasons: "Do you think my job was useful? Ok, buy me a beer, I just wanna have a drink, not save the world!" Features works on multilingual site; every text in the donation form can translated using Joomla's language override feature; automatic PayPal's interface languag...
4.5
6 reviews
J3
Marco's PrestaShop Authentication
Free

Marco's PrestaShop Authentication

By marco maria leoni
Site Access
This plugin allows to customers of a PrestaShop™ e-commerce to access the Joomla! site without a new registration. This is a fast authentication bridge between the two systems. Prestashop to Joomla bridgeThis plugin allows to use an existent PrestaShop e-commerce to authenticate its users on a Joomla installation. Features plugin works on J2.5 and J3.x sites; no need of double registration;...
4
2 reviews
J3

Marco's SQL Injection

Version:
1.4
Developer:
marco maria leoni
Last updated:
Nov 18 2014
10 years ago
Date added:
Nov 18 2014
License:
GPLv2 or later
Type:
Free download
Includes:
p
Compatibility:
J3
Download

This extension does NOT implement the Joomla! Update System

Demo Support Not available Documentation

Score:

Functionality:
Ease of use:
Support:
Documentation:

Write a review