Please upgrade here. These earlier versions are no longer being updated and have security issues.

1.1.10 Vulnerability - Multiple PHP remote file inclusion vulnerabilities in definitions.php

edited May 2010 in Vanilla 2.0 - 2.3
We had an issue with a possible hack today and when I searched the current version and I found this Vuln via packetstormsecurity.org

http://www.cvedetails.com/cve-details.php?cve_number=20101337&cve_id=CVE-2010-1337

Does anyone know if this issue has been addressed?

Comments

  • I too would like to know if this problem has been fixed. Any news?
  • Just had another bit of malicious code injected into my index.php last night.

    Any help would be greatly appreciated.
Sign In or Register to comment.