Author Topic: [1.7 / 1.7.1] Security fix in search.php and register.php  (Read 155360 times)

0 Members and 1 Guest are viewing this topic.

Offline Supoplex

  • Pre-Newbie
  • Posts: 2
    • View Profile
Re: [1.7 / 1.7.1] Security fix in search.php and register.php
« Reply #45 on: April 07, 2006, 12:34:22 PM »
but i'm still having some errors like:
Validate images after delite or..  i get this :
Code: [Select]
Warning: copy(./../data/media/2/yh_2.jpg): failed to open stream: No such file or directory in /var/www/vhosts/yours.lt/subdomains/proektaslt/httpdocs/admin/admin_functions.php on line 111
Error adding image: asdasd (yh_2.jpg)
and Add categories a get this :
Code: [Select]
Warning: ftp_login() expects parameter 1 to be resource, boolean given in /var/www/vhosts/yours.lt/subdomains/mysite/httpdocs/admin/categories.php on line 86
Mauvaise connexion FTPEssaye de se connecter a ftp.yours.lt for user

Offline V@no

  • If you don't tell me what to do, I won't tell you where you should go :)
  • Administrator
  • 4images Guru
  • *****
  • Posts: 17.849
  • mmm PHP...
    • View Profile
    • 4images MODs Demo
Re: [1.7 / 1.7.1] Security fix in search.php and register.php
« Reply #46 on: April 07, 2006, 02:29:59 PM »
re check steps and configuration of safe mode mod that you've installed.
Your first three "must do" before you ask a question:
Please do not PM me asking for help unless you've been specifically asked to do so. Such PMs will be deleted without answer. (forum rule #6)
Extension for Firefox/Thunderbird: Master Password+    Back/Forward History Tweaks (restartless)    Cookies Manager+    Fit Images (restartless for Thunderbird)

Offline tansamalaja

  • Full Member
  • ***
  • Posts: 185
    • View Profile
Re: [1.7 / 1.7.1] Security fix in search.php and register.php
« Reply #47 on: September 04, 2007, 10:59:08 AM »
Man hat mich darauf aufmerksam gemacht, dass die search.php eine Sicherheitslücke haben soll und für sql-injection anfällig ist. Ich habe auch einen Link zu dem entsprechenden Script, möchte diesen aber natürlich nicht veröffentlichen. Wenn also einer der Admins sich mal mit mir in Verbindung setzt, Jan habe ich schon eine PN geschickt, bin ab Donnerstag wieder online.

Offline kai

  • Administrator
  • Addicted member
  • *****
  • Posts: 1.407
    • View Profile
    • 4images - Image Gallery Management System
Re: [1.7 / 1.7.1] Security fix in search.php and register.php
« Reply #48 on: September 04, 2007, 11:28:43 AM »
@ tansamalaja:

Der Bug den Du meinst ist aus 2006 und wurde damals gleich gefixt:
http://www.4homepages.de/forum/index.php?topic=14604.0

Zudem enthält die aktuelle Version 4images 1.7.4 allle Fixes.
Download hier: http://www.4homepages.de/4images/download.php
« Last Edit: September 05, 2007, 01:21:12 PM by kai »
Your first three "must do" before you ask a question:
1. Forum rules
2. FAQ
3. Search

Offline tansamalaja

  • Full Member
  • ***
  • Posts: 185
    • View Profile
Re: [1.7 / 1.7.1] Security fix in search.php and register.php
« Reply #49 on: September 04, 2007, 12:01:22 PM »
Dann ist ja gut...  8)