You are missing our premiere tool bar navigation system! Register and use it for FREE!

NukeCops  
•  Home •  Downloads •  Gallery •  Your Account •  Forums • 
Readme First
- Readme First! -

Read and follow the rules, otherwise your posts will be closed
Modules
· Home
· FAQ
· Buy a Theme
· Advertising
· AvantGo
· Bookmarks
· Columbia
· Community
· Donations
· Downloads
· Feedback
· Forums
· PHP-Nuke HOWTO
· Private Messages
· Search
· Statistics
· Stories Archive
· Submit News
· Surveys
· Theme Gallery
· Top
· Topics
· Your Account
Who's Online
There are currently, 369 guest(s) and 0 member(s) that are online.

You are Anonymous user. You can register for free by clicking here
Security: Security Fixes for PHP-Nuke 6.0
PHP-NukeSecurity Warning for PHP-Nuke 6.x users

You are strongly encouraged to download and apply this Security Fix for PHP-Nuke 6.0 due to a serious security vulnerability. Recent previous versions are also vulnerable.

These files fix a serious security bug present in PHP-Nuke 6.0 and any previous versions. You are strongly encouraged to apply this fix.
Warning !!!: If using Tom's 2.0.6 phpBB port, replace all files included with this fix except modules.php, instead use this one.

Posted on Tuesday, February 04 @ 17:00:05 CET by [RETIRED]chatserv
 
Related Links
· More about PHP-Nuke
· News by [RETIRED]chatserv


Most read story about PHP-Nuke:
PHP-Nuke new development direction (part 2)

Article Rating
Average Score: 0
Votes: 0

Please take a second and vote for this article:

Excellent
Very Good
Good
Regular
Bad


Options

 Printer Friendly Page  Printer Friendly Page

 Send to a Friend  Send to a Friend

Threshold
The comments are owned by the poster. We aren't responsible for their content.

No Comments Allowed for Anonymous, please register

Re: Security Fixes for PHP-Nuke 6.0 (Score: 1)
by CodyG on Tuesday, February 04 @ 17:20:22 CET
(User Info | Send a Message)
I did that... but got a I don't like you error when I tried logging in.




Re: Security Fixes for PHP-Nuke 6.0 (Score: 1)
by chatserv on Tuesday, February 04 @ 17:56:15 CET
(User Info | Send a Message) http://nukeresources.com
I still don't know why some people get that, but FB suggested commenting out lines 3, 4 & 5 from the fixed mainfile.php, hopefully an explanation for this message will be available soon, it remains to be seen if this happens on just one version of Nuke, or if it depends on the server type or php version, we'll see.


  • fix by CodyG on Tuesday, February 04 @ 18:15:48 CET

Re: Security Fixes for PHP-Nuke 6.0 (Score: 0)
by Anonymous on Tuesday, February 04 @ 18:26:36 CET
is anyone keeping track and compiling a "latest and greatest" php-nuke 6.0? any idea where the latest one can be downloaded already patched with this security thing and previous ones? the latest one is september 2002 at http://www.phpnuke.org/modules.php?name=Downloads



Re: Security Fixes for PHP-Nuke 6.0 (Score: 0)
by Anonymous on Tuesday, February 04 @ 22:15:50 CET
I am running toms port so i installed the fix you suplied but when i do my sit just says

i dont like you

any ideas????



Re: Security Fixes for PHP-Nuke 6.0 (Score: 1)
by TriCkPimPiN on Wednesday, February 05 @ 03:31:09 CET
(User Info | Send a Message) http://magaming.com
I'm running 6.0 with out the phpbb2 port, and I'm also getting a white page with "I don't like you" on it. What gives?



Re: Security Fixes for PHP-Nuke 6.0 (Score: 1)
by chatserv on Wednesday, February 05 @ 09:31:10 CET
(User Info | Send a Message) http://nukeresources.com
Those getting a "I Don't Like You" message should place a // in front of lines 3, 4 and 5 of mainfile.php, for some reason some people get this error while others don't, Francisco Burzi has stated in phpnuke.org that fixes placed elsewhere make those 3 lines obsolete, read about this at phpnuke.org.



Re: Security Fixes for PHP-Nuke 6.0 (Score: 0)
by Anonymous on Thursday, February 06 @ 20:31:14 CET
I put in three files in and running for a full day with no reported problems...

Only thing broke is the HTTP referer in admin center... no longer recording HTTP referring, that's all.

Just wondering any idea why? I rely on it to study where people come from everyday.


Powered by TOGETHER TEAM srl ITALY http://www.togetherteam.it - DONDELEO E-COMMERCE http://www.DonDeLeo.com - TUTTISU E-COMMERCE http://www.tuttisu.it
Web site engine's code is Copyright © 2002 by PHP-Nuke. All Rights Reserved. PHP-Nuke is Free Software released under the GNU/GPL license.
Page Generation: 0.091 Seconds - 170 pages served in past 5 minutes. Nuke Cops Founded by Paul Laudanski (Zhen-Xjell)
:: FI Theme :: PHP-Nuke theme by coldblooded (www.nukemods.com) ::