phpBB-TweakS
The easiest way to 'tweak' your phpBB!
  
Advanced Search
    
 
Home Downloads FAQ Register FAQ Memberlist Usergroups Ranks
  Log in to check your private messages Log in  
   
 

Please help us to develop!

 
It appears you are using a browser that is not based on Internet Explorer, this means you are not viewing the web as good as you should be. Other browsers might try to immitate Internet Explorer, but none can parse the web as it should like Internet Explorer can. So view the web as it was meant to be with Avant Browser!
         

phpBB-TweakS Forum Index Announcements Possible Trojan
Display posts from previous:   
Half Thread Topic  Fully Thread Topic  Download Topic
      All times are GMT - 5 Hours  
Post new topic  This topic is locked: you cannot edit posts or make replies.

Mon May 29, 2006 6:12 am
Author Message
aUsTiN
Webmaster
Webmaster


Usa Georgia

Joined: 05 Jan 2005
Posts: 3684
Words Posted: 144,671
Average Post: 39.27
Location: USA
Post subject: Possible Trojan Reply with quote
There where 2 code flaws found yesterday.

1. Blend Portal System
2. Activity Mod Plus

The code flaws can allow someone with PHP knowledge to run a script which can upload files to your server potentially causing damage. I have released fixes for both already. Here they are again.

Blend Portal System Fix

OPEN
blend_data/blend_common.php

FIND
Code:

define('BLEND_DATA_PATH', 'blend_data/');


ADD, AFTER
Code:

if (!defined('IN_PHPBB'))
die('Hack Attempt');


CLOSE & SAVE

Activity Mod Plus Fix

language/lang_english/lang_activity.php
AND
language/lang_english/lang_activity_char.php

FIND
Code:

*
***************************************************************************/


AFTER, ADD
Code:

   if (!defined('IN_PHPBB'))
      die('Not Authorized.');


CLOSE & SAVE

Since this can affect files, i have re-uploaded all files (downloads) here. Any that are missing (any added since my last backup) will be added as i get time.
Post #1
      Back To Top  

Mon May 29, 2006 6:24 am
Author Message
aUsTiN
Webmaster
Webmaster


Usa Georgia

Joined: 05 Jan 2005
Posts: 3684
Words Posted: 144,671
Average Post: 39.27
Location: USA
Post subject: Reply with quote
Just an FYI, there are quite a few other mods with these same issues (i dont know if their authors have released fixes or not), so keep your eyes open for changes in your site.
Post #2
      Back To Top  

 
         

Post new topic  This topic is locked: you cannot edit posts or make replies.

phpBB-TweakS Forum Index Announcements Possible Trojan
You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum

      Back To Top  

Page 1 of 1
Jump to:  
 
Protected by phpBB Security © phpBB-TweakS
phpBB Security Has Blocked 3,237 Exploit Attempts.

· Archive · Sitemap: Index · Sitemap: Forums · Sitemap: Topics · Sitemap: Posts ·

:: [ Load Time: 2.8 Seconds ] :: [ 29 Queries ] :: [ 595 Page(s) Viewed Today ] ::
:: [ Todays Queries: 17,653 ] :: [ Highest Load: 1,396,429 Queries On May. 08, 2007 ] ::
:: [ SQL Load: 61% Time: 1.7 ] :: [ PHP Load: 39% Time: 1.1 ] :: [ Debug: On ] :: [ GZIP: Enabled ] ::
:: The server last rebooted 80 days, 16 hours, 2 minutes, 53 seconds ago. ::
The phpBB[Network]!
       


This page has been viewed 4,927,653 times, last viewed: Sat Sep 06, 2008 12:33 am.
Powered by phpBB 2.0.* © 2001, 2002 phpBB Group
Avalanche style by What Is Real © 2004