Downloads & Web Links vulnerability Patch

Posted on Thursday, October 09, 2003 @ 12:47:50 CEST in Security
by Raven

From ChatServ at Nuke Cops

Recently a sql injection vulnerability has been reported that relates to the Downloads and Web Links modules where an admin account can be created by passing a sql line through the $cid variable, i have patched both modules not only to block this code to be passed through the $cid variable but on all similar variables as well, patch your websites.
Download for PHP-Nuke 6.5-6.9
Download for PHP-Nuke 6.0

Admin Note:I have updated the v6.9 download pack, from this site, as of 10/9/2003 18:25 to include these patches.

These files have been updated since this message was posted! You need to download them again by clicking on the pertinent link above!!
click Related        click Share
Associated Topics


Bugs - Fixed

Bugs and Alerts
News ©

Site Info v2.2.2

Last SeenLast Seen
  • MrHandsome
  • FireATST
Server TrafficServer Traffic
  • Total: 379,276,950
  • Today: 25,738
Server InfoServer Info
  • Mar 26, 2019
  • 11:10 am CET