Shortly after the VirtueMart Project Team has been notified of a critical security issue in all current VirtueMart Versions, we have released a new version: VirtueMart 1.0.13, which fixes this and other uncritical bugs.
All users of VirtueMart are urged to update their installations of VirtueMart to this version. Failure to do this can seriously compromise your server's security.
You can download Patch Packages for each previous version of VirtueMart that allows you to quickly upload and overwrite just those files, which have changed.
Other changes have been introduced to achieve higher compatibility to Joomla! 1.5 and Mambo 4.6.x. VirtueMart 1.0.13 can be installed on Joomla! 1.5 in Legacy Mode. To enable the Legacy Mode in Joomla! 1.5 you need to publish the "System - Legacy" Plugin in the Plugin Manager.
You can use this version of VirtueMart without problems on all Joomla! 1.0 versions, including the latest version 1.0.13. Please note that you will still need to fix your installation of Joomla! 1.0.13 with this patch (just overwrite existing files via FTP).