|
#1
|
||||
|
||||
Yuna Scatari v2.2 PRE7 By kp380lv - Hotfixes
Potential dangerous XSS hole in simpaty.php
Find this: Code:
<form action=\"" . $_SERVER["PHP_SELF"] . "?action=add&" . ($resp_type == 1?'good':'bad') . "&type=$type&targetid=$targetid\" method=\"post\"> Code:
<form action=\"" . $_SERVER["PHP_SELF"] . "?action=add&" . ($resp_type == 1?'good':'bad') . "&type=".htmlspecialchars($type)."&targetid=$targetid\" method=\"post\"> Code:
$type = $_GET['type' Code:
$type = htmlentities($_GET['type']); Find this: Code:
$choice = $_POST["choice"]; Code:
$choice = (int) $_POST["choice"]; |
The Following User Says Thank You to kp380lv For This Useful Post: | ||
Masterdan (8th July 2009)
|
#2
|
|||
|
|||
Thanks for these!
I was wondering if you also fixed the following bugs i reported here: http://bvlist.com/yuna-scatari/431-y...html#post10216 |
#3
|
||||
|
||||
In functions.php find this:
Code:
if ((DEBUG_MODE || isset($_GET["yuna"])) && count($query_stat)) { Code:
if ((DEBUG_MODE) && count($query_stat)) { |
The Following User Says Thank You to kp380lv For This Useful Post: | ||
Masterdan (8th July 2009)
|
#4
|
|||
|
|||
Fix
1. comment.php (line 104) $commentid = (int) $_GET["cid"]; ;
2. email-gateway.php(line 31) If ($subject == "") $subject = "(No subject)"; 3. message.php (line 361) sttderr($tracker_lang['error'], $message_lang['addedtoblacklist']); 4. message.php (line 432) $n_pms = 0 + $_POST['n_pms'];['n_pms']; Enjoy! |
Tags |
hotfixes , kp380lv , pre7 , scatari , v22 , yuna |
|
|
Similar Threads | ||||
Thread | Thread Starter | Forum | Replies | Last Post |
Yuna Scatari v2.0 PRE7 RC2 - Primo-Nordica RIP | sourcedelv | Yuna Scatari Edition (YSE) | 8 | 10th June 2010 17:47 |
blank pm page in yuna scatari v2.2 pre7 | farshidkiani | Yuna Scatari Edition (YSE) | 2 | 4th December 2009 11:19 |
Yuna Scatari v2.2 PRE7 --vs--Nehalem? | ampedm | Yuna Scatari Edition (YSE) | 7 | 25th March 2009 15:49 |
BlackJack for Yuna Scatari v2.0 PRE7 | Kotafi | Yuna Scatari Edition (YSE) | 3 | 18th July 2008 14:23 |
Yuna Scatari v2.0 PRE7 RC0 & RC1 | BoLaMN | Yuna Scatari Edition (YSE) | 161 | 9th May 2008 21:26 |