PHP-Nuke Vulnerability! Get your fix NOW!
Date: Saturday, July 30 @ 06:47:12 CEST
Topic: Security


A security issue with PHP-Nuke has been found in admin.php. This issue allows to add GOD admins easily to the admin. Bug reported to us by PeNdEjO (thanks a lot).

I quickly made a fix and chatserv updated the packages. Its recommended that you get Nuke Patched 3.1 as quick as possible to avoid your site being hacked.

This issue does NOT affect NukeSentinel users or users that have a HTTP Authenticate check on their admin.php

Again, thanks to PeNdEjO

Manual changes also available at nukefixes.com



Good catch!



This article comes from NukeCops
http://www.nukecops.com

The URL for this story is:
http://www.nukecops.com/modules.php?name=News&file=article&sid=4524