Bravo List
Register
Go Back   > Bravo List > Source Code > Archived Trackers > Yuna Scatari Edition (YSE)
Reply
  #1  
Old 9th April 2009, 08:53
kp380lv's Avatar
kp380lv kp380lv is offline
Senior Member
 
Join Date: May 2008
Latvia
Posts: 388
Default Yuna Scatari v2.2 PRE7 By kp380lv - Hotfixes
Potential dangerous XSS hole in simpaty.php

Find this:

Code:
<form action=\"" . $_SERVER["PHP_SELF"] . "?action=add&amp;" . ($resp_type == 1?'good':'bad') . "&amp;type=$type&amp;targetid=$targetid\" method=\"post\">
And replace with this:

Code:
<form action=\"" . $_SERVER["PHP_SELF"] . "?action=add&amp;" . ($resp_type == 1?'good':'bad') . "&amp;type=".htmlspecialchars($type)."&amp;targetid=$targetid\" method=\"post\">
Then in simpaty.php find this:

Code:
$type = $_GET['type'
And replace with:

Code:
$type = htmlentities($_GET['type']);
index.php - (Blind SQL Injection in index.php)

Find this:

Code:
$choice = $_POST["choice"];
Replace with:

Code:
$choice = (int) $_POST["choice"];
This list still be updated!!!
Reply With Quote
The Following User Says Thank You to kp380lv For This Useful Post:
Masterdan (8th July 2009)
  #2  
Old 9th April 2009, 10:56
ampedm ampedm is offline
Senior Member
 
Join Date: Mar 2009
Canada
Posts: 19
Default
Thanks for these!

I was wondering if you also fixed the following bugs i reported here:

http://bvlist.com/yuna-scatari/431-y...html#post10216
Reply With Quote
  #3  
Old 19th April 2009, 11:28
kp380lv's Avatar
kp380lv kp380lv is offline
Senior Member
 
Join Date: May 2008
Latvia
Posts: 388
Default
In functions.php find this:

Code:
if ((DEBUG_MODE || isset($_GET["yuna"])) && count($query_stat)) {
And replace with this:

Code:
if ((DEBUG_MODE) && count($query_stat)) {
Reply With Quote
The Following User Says Thank You to kp380lv For This Useful Post:
Masterdan (8th July 2009)
  #4  
Old 26th August 2009, 09:15
slayer slayer is offline
Member
 
Join Date: May 2009
Belarus
Posts: 2
Default Fix
1. comment.php (line 104) $commentid = (int) $_GET["cid"]; ;
2. email-gateway.php(line 31) If ($subject == "") $subject = "(No subject)";
3. message.php (line 361) sttderr($tracker_lang['error'], $message_lang['addedtoblacklist']);
4. message.php (line 432) $n_pms = 0 + $_POST['n_pms'];['n_pms'];

Enjoy!
Reply With Quote
Reply

Tags
hotfixes , kp380lv , pre7 , scatari , v22 , yuna

Thread Tools

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off

Forum Jump

Similar Threads
Thread Thread Starter Forum Replies Last Post
Yuna Scatari v2.0 PRE7 RC2 - Primo-Nordica RIP sourcedelv Yuna Scatari Edition (YSE) 8 10th June 2010 17:47
blank pm page in yuna scatari v2.2 pre7 farshidkiani Yuna Scatari Edition (YSE) 2 4th December 2009 11:19
Yuna Scatari v2.2 PRE7 --vs--Nehalem? ampedm Yuna Scatari Edition (YSE) 7 25th March 2009 15:49
BlackJack for Yuna Scatari v2.0 PRE7 Kotafi Yuna Scatari Edition (YSE) 3 18th July 2008 14:23
Yuna Scatari v2.0 PRE7 RC0 & RC1 BoLaMN Yuna Scatari Edition (YSE) 161 9th May 2008 21:26



All times are GMT +2. The time now is 16:10. vBulletin skin by ForumMonkeys. Powered by vBulletin® Version 3.8.11 Beta 3
Copyright ©2000 - 2024, vBulletin Solutions Inc.