Official Sponsor: NetworkRedux
PHP-Fusion
September 09 2010 04:05:02
Navigation
IRC Channel
Want to chat?
Join our IRC channel at:
irc.freenode.net #phpfusion

Freenode Webchat

Free IRC Clients: Wikipedia
Support Sites
Donate
Multiple vulnerabilities in PHP-Fusion 6
Bugs and ErrorsIt's another bug hunt day for PHP-Fusion. I've recently been informed of three exploits, 2 of them major. members.php can be exploited by minipulating the $sortby variable via the url (fixed). There is a potential cross-site exploit in the $_POST['rating'] variable in ratings_include.php (fixed). Finally, the return of the [IMG] bbcode cross-site exploit in maincore.php, the system can be fooled into believing that a folder with a valid image extension is an image, this can be very serious if an admin were to view a message which contains this exploit. This one has had me studying for hours, it's a pig of a fix, but it's the best I can do. These issues also affects v6.00.2x, you can find the update info in the cvs.

Existing v6.00.300 users can update using 6-00-301up.zip, simply upload the files and click upgrade under system admin. The sourceforge packages have been updated with all of the above fixes.

Download PHP-Fusion v6.00.301 update (24Kb).
· Digitanium on December 21 2005 12:59:15 In Bugs and Errors · Print
Ratings
Rating is available to Members only.

Please login or register to vote.
No Ratings have been Posted.
Login
Username

Password



Not a member yet?
Click here to register.

Forgotten your password?
Request a new one here.
Member Poll
Which PHP version are you using?

4.x or older
4.x or older
7% [26 Votes]

5.0.x
5.0.x
4% [15 Votes]

5.1.x
5.1.x
3% [12 Votes]

5.2.x
5.2.x
26% [97 Votes]

5.3.x or newer
5.3.x or newer
59% [217 Votes]

Votes: 367
You must login to vote.
Started: 15 Jun 2010 23:49:52

Polls Archive
RSS Feeds
- PHP-Fusion News
- SF File Releases
- SF News Releases
Render time: 0.06 seconds - 21 Queries 72,874,060 unique visits
All content on this site is Copyright © 2003-2010 PHP-Fusion and Nick Jones, all rights reserved.
Logos and trademarks are the property of their respective owners.


Powered by PHP-Fusion copyright © 2002 - 2010 by Nick Jones.
Released as free software without warranties under GNU Affero GPL v3.