Nuke Security 2008 - Ravens PHP Scripts

Nuke Security 2008

Posted on Tuesday, January 29, 2008 @ 10:18:10 UTC in Security
by Raven

Evaders99 writes:
Another security bug, this time with phpBB. You could possibly delete your entire Private Message inbox, but only if you are logged in and get sent some nasty code.

phpBB 2.0.22 Remote PM Delete XSRF Vulnerability

See the link for the fix

Also if you didn't see the more urgent SQL injection in the Search module...
PHP-Nuke modules/Search/index.php SQL fix is here

click

Related

click

Site Info

Anonymous

Last Seen

Last Seen

vashd1
ofigustavo

Server Traffic

Server Traffic

Total: 482,359,739
Today: 10,125

Server Info

Server Info

Apr 20, 2024
09:28 am UTC

Site Navigation

Partners

NuSphere PhpED
IDE for PHP, HTML, CSS, XML, SMARTY, XHTML
Special 10% off coupon! ALL-ACT-10-O-945A4

PHPRunner - PHP form builder

CSE HTML Validator

ip address masquerading

CoffeeCup Software

phpDesigner
PHP Editor/IDE for all PHP/Web development

Recommended Sites

Old Articles

Tuesday, October 06, 2020
Thursday, December 12, 2019
- Patch, Or Your Solid State Drives Roll Over And Die
Tuesday, August 27, 2019
- Small Step Forward
Tuesday, May 14, 2019
- Pat On The Back
Friday, April 19, 2019
- Upgrade done!
Sunday, October 14, 2018
- The Very Best 4 (Active) CSS Lint Tools
Monday, August 20, 2018
- CSS Grid Layout
Saturday, December 02, 2017
- Linux Journal ceases publication, offers entire digital archive for $12
Older Articles

[ Legal Notice | Privacy Policy | Terms of Use | Comments ]

Theme by: nukecoder.com

PHP-Nuke Copyright © 2004 by Francisco Burzi. This is free software, and you may redistribute it under the GPL. PHP-Nuke comes with absolutely no warranty, for details, see the license.

Page Generation: 0.12 Seconds