Sub Menu
Links Menu
Online Users

In total there are 308 users online :: 2 registered, 0 hidden and 306 guests

Most users ever online was 1091 on Wed Aug 16, 2023 5:27 pm

Registered users: Bing [Bot], Google [Bot] based on users active over the past 60 minutes

new bug found in IM Portal <= v1.2.0

This is where youll find security related information.
Discuss Integramod/phpbb security issues here.

Moderator: Integra Moderator

new bug found in IM Portal <= v1.2.0

PostAuthor: sasan » Tue Sep 26, 2006 8:13 am

hi this is a new bug in (phpbb_root_path) of IM Portal


Code: Select all
Bug in : includesfunctions_portal.php##Vlu Code :#--------------------------------##            include_once($phpbb_root_path . 'includes/lite.'.$phpEx);##


patch this
Last edited by sasan on Wed Dec 31, 1969 4:00 pm, edited 1 time in total.

sasan
Newbie
Newbie
 
Posts: 14
Likes: 0 post
Liked in: 0 post
Joined: Fri May 19, 2006 6:13 am
Cash on hand: 0.00

Re: new bug found in IM Portal <= v1.2.0

PostAuthor: Michaelo » Tue Sep 26, 2006 12:32 pm

The php_root_path is set prior to calling this line of code therefore this should be safe, you could however add
Code: Select all
 if ( !defined('IN_PHPBB') ){     die("Hacking attempt#27");}  

to the lite.php file as line 28.
Mike
Last edited by Michaelo on Wed Dec 31, 1969 4:00 pm, edited 1 time in total.
Kiss Portal Engine phpbbireland (status: Released)
User avatar
Michaelo
Administrator
Administrator
 
Posts: 1646
Likes: 0 post
Liked in: 0 post
Joined: Sat Mar 11, 2006 5:14 pm
Cash on hand: 0.00
Location: Dublin, Ireland


Return to Forum Security

Who is online

Registered users: Bing [Bot], Google [Bot]

cron