Foren / Cotonti / Bugs / Seditio Events Sql injection..

Lombi	#1 23. April 2009, 18:28
Team Thanked: 1 mal	http://www.seditio-tr.com/son31878-seditio-events-sql-injecktion-last.html#bottom Is ours safe from this? <a href="http://www.domenlo.com">Surreal Art</a>

Kilandor	#2 23. April 2009, 22:15
Administrators Thanked: 9 mal	Please note, Cotonti events is vulnerable to the same exploit. Here is a Secured version of events, http://www.cotonti.com/datas/users/events_sql_injection_fix_1.rar All possible injections are secured up, calendar has no injections. Anyone using events should upgrade. All you need to do is replace the files.
Administrators Thanked: 9 mal	Dieser Beitrag wurde von Kilandor (am 23. April 2009, 22:57, vor 16 Jahre) bearbeitet

aiwass	#3 23. April 2009, 23:11
Members Thanked: 1 mal	Updated :) Thanks ! Take all that money that we spend on weapons and defences each year and instead spend it feeding and clothing and educating the poor of the world, which it would many times over, not one human being excluded, and we could explore space, together, both inner and outer, forever, in peace. - Bill Hicks https://evlear.com

HarryRag	#4 24. April 2009, 00:01
Members	Thnx updated [center][url=<a href="">http://www.true-gamers.nl]True</a> & Honest Gamers[/url][/center]

Kingsley	#5 24. April 2009, 00:56
Donator Thanked: 7 mal	updated to, thx guys..

GHengeveld	#6 24. April 2009, 05:21
Team Thanked: 52 mal	Thanks for the heads up guys, I should've noticed this. I'm updating the original download file right away. Update: Events/Calendar v2.0 download file has been fixed and updated. Please re-download and re-install if you haven't done so already.
Team Thanked: 52 mal	Dieser Beitrag wurde von Koradhil (am 24. April 2009, 19:49, vor 16 Jahre) bearbeitet

Aragorn-pc	#7 24. April 2009, 07:07
Members	Thanx. :) .# Aragorn-pc // Turkish Information Technology's Underground World Aragorn-pc.org http://www.kankayizz.biz http://www.sanalarsiv.gen.tr http://www.osmanli-devleti.net Prosed.NET Seditio SedBlog Themes Sharing

Sean	#8 29. April 2009, 05:56
Contributors	Thanks for the fix guys. One of my Seditio sites was just hacked using this exploit, and I'm wondering if there's a Seditio patch? Or if the Cotonti version of the plugin will work?

Lombi	#9 29. April 2009, 06:36
Team Thanked: 1 mal	There's a seditio patch on neocrome.net (untested) <a href="http://www.domenlo.com">Surreal Art</a>