Skip to content

Security: joomtheme/JT-Position-Finder

Security

SECURITY.md

Security Policy

Supported Versions

Security updates are provided for the latest stable release of JT Position Finder.

Version Supported
1.0.3 Yes
Older versions No

Reporting a Vulnerability

Please do not report security vulnerabilities in public GitHub issues.

If you discover a security issue, please report it privately by contacting the project maintainer.

Maintainer:

When reporting a vulnerability, please include:

  • A clear description of the issue
  • Steps to reproduce the issue
  • Joomla version
  • PHP version
  • Browser name and version, if UI-related
  • Any relevant screenshots, logs, or proof of concept details

Security Scope

JT Position Finder is an administrator plugin.

The extension should not:

  • Modify Joomla core files
  • Modify administrator template files
  • Modify Bootstrap core files
  • Load external scripts from a CDN
  • Use encrypted or obfuscated code
  • Expose public AJAX endpoints unnecessarily
  • Store sensitive user data

Responsible Disclosure

Please allow reasonable time for the issue to be reviewed and fixed before public disclosure.

Confirmed security fixes will be documented in the changelog where appropriate.

There aren't any published security advisories