2007-04-04, 05:19 AM
Nice quick painless update. Thanks guys!
Discuss: MyBB 1.2.4 Released - Important Security Update
|
2007-04-04, 05:19 AM
Nice quick painless update. Thanks guys!
2007-04-04, 07:06 AM
Thank you Mybb Group
Thank you for the update very easy to do as well (just need to update to files) Thank you Tazfan
I had two files like that, one in uploads, and one in uploads/avatars. They both had numerical filenames, the example was '75093.php'. Was my board breached?
2007-04-04, 07:43 AM
I to say
I wonder about the quality of the provided patch:
* Why should a function (get_ip) that has absolutely nothing to do with database access use the function $db->escape_string? * Why do you leave space characters in the IP address? * Why is escape_string necessary at all, after you have filtered out everything except [0-9. ]? Roland
2007-04-04, 08:55 AM
(This post was last modified: 2007-04-04, 08:58 AM by Chris W. B..)
Thanks, updated.
I seen last night it was posted here, very fast at fixing it well done ![]()
2007-04-04, 09:15 AM
A nice easy fix.
I ran the vulnerability checker and it found a file.........went to my FTP not sure what I would find and found a file I'd uploaded myself to delete some files which wouldn't delete through my FTP GUI. I'd deleted the files but not the file deletion script. D'oh!!!!!!!! All happy now
2007-04-04, 09:16 AM
What were the file names that you deleted?
2007-04-04, 09:35 AM
Do i need to fix my old MyBB 1.2.2 Forum with this patch too or is this patch for MyBB 1.2.3 only?
|
« Next Oldest | Next Newest »
|