Jump to content


Photo

Security Hole Help


  • Please log in to reply
1 reply to this topic

#1 pea

pea
  • Members
  • PipPipPip
  • Advanced Member
  • 41 posts

Posted 28 October 2006 - 08:26 AM

Hello, I made a blogging script and last night someone pointed out the security holes..I'm fairly new to php so some of it's confusing me a bit and i need some help. Here's what they said, i can do point one so i'll forget about that,

2 - You can erase (even with mq=on) all file that are stored on the server:

[...]
$t = stripslashes($t);
[...]
$fc = fopen ("blog_comments/$t.txt", "w");
fwrite ($fc, "");
[...]

3-Using point No 1 you can do some XSS couse there isn't any anti-Xss code for admins
4-If mq=on than you can deface the site (but no injecting PHP cause < and > are properly parsed)


Firstly, what's mq (message queue?)? How can you deface the site. What's wrong with $t = stripslashes($t); ?I need some guidance..


Thanks. Pete

#2 Daniel0

Daniel0
  • Staff Alumni
  • Advanced Member
  • 11,956 posts

Posted 28 October 2006 - 09:12 AM

We would need the source in order to tell you how to make it safe.




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users