Ravens PHP Scripts

And yet another admin.php security hole!
Date: Tuesday, October 14, 2003 @ 21:27:30 PDT
Topic: Security


In searching out the exploits of Nuke this month, I came across another one that Nuke Cops was not aware of. I reported it to ChatServ and he graciously and expeditiously supplied yet another patch. Interestingly enough, although the hole is in the admin.php logic, it is repaired in auth.php. Read this post for the fix.

Admin Note: I have updated the v6.9 download pack, from this site, as of 10/14/2003 22:25 to include this patch.







This article comes from Ravens PHP Scripts
http://www.ravenphpscripts.com

The URL for this story is:
http://www.ravenphpscripts.com/modules.php?name=News&file=article&sid=189