English | Vietnamese
 

banner

[Rule] Rules  [Home] Main Forum  [Portal] Portal  
[Members] Member Listing  [Statistics] Statistics  [Search] Search  [Reading Room] Reading Room 
[Register] Register   [Login] Loginhttp  | https  ]
 
Forum Index Thông tin new bugs và exploits FlashChat and TopXStats Plugin Vulnerabilities  XML
  [Announcement]   FlashChat and TopXStats Plugin Vulnerabilities 05/09/2006 14:04:09 (+0700) | #1 | 20778
subnetwork
Member
[Minus]    0    [Plus]
Joined: 05/09/2004 06:08:09
Messages: 1666
Offline
[Profile] [PM] [WWW] [Yahoo!]
FlashChat Adminips.PHP Remote File Include Vulnerability
Class: Access Validation Error
Remote: Yes
Local: No
Published: Jun 16 2006 12:00AM
Updated: Jun 16 2006 12:00AM
Credit: SpC-x is credited with discovering this vulnerability.
Vulnerable: TUFaT FlashChat 4.5.7

FlashChat Adminips.PHP Remote File Include Vulnerability

FlashChat is prone to a remote file-include vulnerability because it fails to properly sanitize user-supplied input to the application.

An attacker may leverage this issue to have an arbitrary remote file containing malicious script code execute in the context of the webserver process. This may allow the attacker to compromise the application and the underlying system. Other attacks are also possible.

Nguồn
Code:
http://www.securityfocus.com/bid/18480/info


Lỗi này đã củ, hôm nay "cư dân" sử dụng VBB lo "sốt vó" :cry:
FlashChat and TopXStats Plugin Vulnerabilities

Update hoặc xoá bỏ hai plugin này nếu forum của bạn có sử dụng . :cry:
Kiểm tra và tắt HTML code ở các Box chĩ nên On vB code
Quản lý máy chủ, cài đặt, tư vấn, thiết kế, bảo mật hệ thống máy chủ dùng *nix
http://chamsocmaychu.com
[Up] [Print Copy]
[digg] [delicious] [google] [yahoo] [technorati] [reddit] [stumbleupon]
Go to: 
 Users currently in here 
1 Anonymous

Powered by JForum - Extended by HVAOnline
 hvaonline.net  |  hvaforum.net  |  hvazone.net  |  hvanews.net  |  vnhacker.org
1999 - 2013 © v2012|0504|218|