You are missing our premiere tool bar navigation system! Register and use it for FREE!

NukeCops  
•  Home •  Downloads •  Gallery •  Your Account •  Forums • 
Readme First
- Readme First! -

Read and follow the rules, otherwise your posts will be closed
Modules
· Home
· FAQ
· Buy a Theme
· Advertising
· AvantGo
· Bookmarks
· Columbia
· Community
· Donations
· Downloads
· Feedback
· Forums
· PHP-Nuke HOWTO
· Private Messages
· Search
· Statistics
· Stories Archive
· Submit News
· Surveys
· Theme Gallery
· Top
· Topics
· Your Account
Who's Online
There are currently, 427 guest(s) and 0 member(s) that are online.

You are Anonymous user. You can register for free by clicking here
PHP-Nuke: New Security Vunerability found!!!
SecurityArtificialIntel writes "It would appear that Blocks aren't immune to being hacked. De-activate ALL html blocks ASAP.

AI"
Posted on Wednesday, April 23 @ 01:40:07 CEST by [RETIRED]chatserv
 
Related Links
· Computer Cops
· More about Security
· News by [RETIRED]chatserv


Most read story about Security:
PHP-Nuke admin.php security hole - PATCHED

Article Rating
Average Score: 2
Votes: 8


Please take a second and vote for this article:

Excellent
Very Good
Good
Regular
Bad


Options

 Printer Friendly Page  Printer Friendly Page

 Send to a Friend  Send to a Friend

Threshold
The comments are owned by the poster. We aren't responsible for their content.

No Comments Allowed for Anonymous, please register

Re: New Security Vunerability found!!! (Score: 1)
by el_flynn on Wednesday, April 23 @ 03:17:54 CEST
(User Info | Send a Message)
AI, can you provide a little bit more info on this? I'm sure this is a serious issue, and there'd be others out there as well who need to know more about it.. What's the exploit about? Any other fix than deactivating all html blocks? Are -ALL- blocks affected??

Regards



Re: New Security Vunerability found!!! (Score: 1)
by disgruntledtech on Wednesday, April 23 @ 03:34:52 CEST
(User Info | Send a Message) http://www.voicesinmyhead.net
im gonna have to agree with flynn on this one we need more info on this one



Re: New Security Vunerability found!!! (Score: 1)
by chatserv on Wednesday, April 23 @ 03:44:54 CEST
(User Info | Send a Message) http://nukeresources.com
I don't have the details on this one but the blocks in question are the ones listed as html in the blocks admin section (like information) don't think administration would be a problem since it's not viewable by all, in my case i converted all these blocks into php block files, i would suggest that just to play it safe you disable said blocks until AI returns and gives you the full details, more on this is available in the Nuke Security forum.


Powered by TOGETHER TEAM srl ITALY http://www.togetherteam.it - DONDELEO E-COMMERCE http://www.DonDeLeo.com - TUTTISU E-COMMERCE http://www.tuttisu.it
Web site engine's code is Copyright © 2002 by PHP-Nuke. All Rights Reserved. PHP-Nuke is Free Software released under the GNU/GPL license.
Page Generation: 0.156 Seconds - 171 pages served in past 5 minutes. Nuke Cops Founded by Paul Laudanski (Zhen-Xjell)
:: FI Theme :: PHP-Nuke theme by coldblooded (www.nukemods.com) ::