Hello,
An old issue fixed 1 year ago has been published on several websites these latest days.
This issue allow user to upload and execute some php code. This issue appears between version 2.6 and 2.9.13.
This article is just to tell you that you don't have any problem with your current AdsManager if version is >= 2.9.13.
So every one using version under 2.9.13 should upgrade to recent version. (which should be done like any software all the time)
In any case, if you want to secure your old version you can apply this quick fix or contact us per email (support@juloa.com)
in components/com_adsmanager/controller.php
In function upload() just after
// Clean the fileName for security reasons
$fileName = preg_replace('/[^\w\._]+/', '', $fileName);
add
$ext = strrpos($fileName, '.');
$fileName_b = strtolower(substr($fileName, $ext+1));
if (!in_array($fileName_b,array("jpg","jpeg","gif","png"))) {
exit();
}