Board index » Support in English » Guestbook Script 1.9 (the old one)

All times are UTC




 Page 1 of 1
  [ 1 post ] 
  Previous topic | Next topic 
Author Message
Ralf
 Post subject: Security Update - Version 1.9 released
PostPosted: 2006-04-25 (13:33) 
Offline
Site Admin

Joined: 2003-07-26 (23:49)
Posts: 6027
We have discovered a bug in Guestbook Script that allows under certain circumstances the injection of third party code. A potential attacker would be able to spy out local files on the server or to inject malicious code that is located on a third party server. Affected are all versions including 1.7. Following would be required for a successful attack:

Spy out of local files

- PHP INI setting register_globals = On
- PHP 4 or higher


Injection of code from another server

- PHP INI setting register_globals = On
- PHP 5 or higher


We strongly recommend the update to the current version 1.9. Please note: We have skipped version 1.8 for internal reasons.

Download Guestbook Script 1.9

In order to update your existing installation of version 1.7 you only need to replace the file /inc/common.inc.php with the new one.

Older versions of the script need first to be updated to the current version 1.7.

STADTAUS.com Support Team
Top
 Profile  
 
Display posts from previous:  Sort by  
 Page 1 of 1
  [ 1 post ] 

Board index » Support in English » Guestbook Script 1.9 (the old one)

All times are UTC


Who is online

Users browsing this forum: No registered users and 0 guests

You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum


Resources:   Schwerin    Private Krankenversicherung    Krankenversicherung    Website Tools Collection    Speed Camera Database    Radarfallen-Datenbank    Speed Camera Database    Teeny Weeny URL
Powered by phpBB © 2000, 2002, 2005, 2007 phpBB Group
HOMEPAGE
INTERN
CONTACT
PHP-SCRIPTS