Bravo List
Register
Go Back   > Bravo List > Source Code > Archived Trackers > xBTiT
Reply
  #1  
Old 26th August 2008, 12:30
Fynnon's Avatar
Fynnon Fynnon is offline
xxx
 
Join Date: Nov 2007
P2P
Posts: 984
Default [important] urgent - protection fix
a vulnerability (sql injection which can give the admins nick + passhash) has been discover in all btit 1.4.x/xbtit <= rev 544 version (BtiTracker <= 1.4.7, xbtit <= 2.0.542 SQL Injection Vulnerability), please apply urgently the patch

quick fix:

open scrape.php
find:
Code:
require("$BASEPATH/include/config.php");
require("$BASEPATH/include/common.php");
below add:
Code:
require_once $BASEPATH.'/include/crk_protection.php';
or download attached, upload to your tracker's root and rename to scrape.php

To unsubscribe from these announcements, login to the forum and uncheck "Receive forum announcements and important notifications by email." in your profile.

You can view the full announcement by following this link:

Template Parse Error!

Regards,
The Btiteam Forum Team.
Reply With Quote
The Following User Says Thank You to Fynnon For This Useful Post:
sharpe (23rd September 2008)
  #2  
Old 17th April 2009, 03:27
m4rc3 m4rc3 is offline
Member
 
Join Date: Apr 2009
Argentina
Posts: 6
Default You know that
You try to check the code with this script www.htmlpurifier.org this scan for security vulnerabilities like xsss attacks, in the code php html xml, but make copy of your scripts for security reasons, and all site owners need Acunetix Web Vulnerability Scanner Enterprise v6.1.20090211
Reply With Quote
Reply

Tags
fix , important , protection , urgent

Thread Tools

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off

Forum Jump

Similar Threads
Thread Thread Starter Forum Replies Last Post
New announcement: XBTIT VULNERABILITY Fynnon xBTiT 1 12th April 2010 11:35
urgent help DrNet Template Shares 8 8th October 2008 12:44
Sos urgent pls help Subzero Free Torrent Source 6 8th October 2008 12:29
Urgent Help !!!!! DrNet Template Shares 2 3rd August 2008 06:19
Important Question !!! mahdi101 Template Shares 9 9th July 2008 07:25



All times are GMT +2. The time now is 23:27. vBulletin skin by ForumMonkeys. Powered by vBulletin® Version 3.8.11 Beta 3
Copyright ©2000 - 2024, vBulletin Solutions Inc.