Ravens PHP Scripts

Potential XSS exploit discovered for different versions of *nuke
Date: Saturday, November 10, 2007 @ 00:39:13 PST
Topic: Security


The RavenNuke(tm) Team has found a possible XSS opportunity depending on different factors of how your forums are setup. The fix is to replace your current modules/Forums/posting.php file with this one. This fix has been tested on RavenNuke(tm) but should work for other versions too. Your versions of the file may already contain the fix (for other reasons) but we have confirmed that the exploit is in other flavors of nuke. Better safe than sorry :)! Be sure to read the README file for additional information.

Download posting.php fix








This article comes from Ravens PHP Scripts
http://www.ravenphpscripts.com

The URL for this story is:
http://www.ravenphpscripts.com/modules.php?name=News&file=article&sid=3129