The RavenNuke(tm) Team has found a possible XSS opportunity depending on different factors of how your forums are setup. The fix is to replace your current modules/Forums/posting.php file with this one. This fix has been tested on RavenNuke(tm) but should work for other versions too. Your versions of the file may already contain the fix (for other reasons) but we have confirmed that the exploit is in other flavors of nuke. Better safe than sorry :)! Be sure to read the README file for additional information.
Download posting.php fix
|
This article comes from Ravens PHP Scripts
https://www.ravenphpscripts.com
The URL for this story is:
https://www.ravenphpscripts.com/modules.php?name=News&file=article&sid=3129
https://www.ravenphpscripts.com
The URL for this story is:
https://www.ravenphpscripts.com/modules.php?name=News&file=article&sid=3129