HackerOne users: Testing against this community violates our program's Terms of Service and will result in your bounty being denied.
Search
-
Re: help glitch or hacker
TagFullName($Tag).' '.Wrap(number_format($Tag['CountDiscussions']), 'span', array('class' => 'Count')),//this name is not stripped from non html characters= BAD shit will happen htmlspecialchars(TagFullName($Tag)).' '.Wrap(number_format($Tag['CountDiscussions']), 'span', array('class' => 'Count')),//this name only accepts… -
Re: help glitch or hacker
There was a vulnerability where the text entered into the tag was not being stripped of non htmlcharacters… R_J gave me the code to patch the vulnerability for them. And said he reported it. There were 3 tags with <script> in them. I deleted them and deleted the one who posted them and any content they had. The tags can be… -
Re: help glitch or hacker
-
Re: help glitch or hacker
-
Re: help glitch or hacker
-
Re: help glitch or hacker
@data66 compare enhanced tags plugin https://vanillaforums.org/addon/tagging-plugin with the staff plugin regarding panel. the much older enhanced plugin in the add-ons has the vulnerability corrected (although other aspects may not work). If you are a patient we should expect a release soon to correct this vulnerability… -
Re: help glitch or hacker
-
Re: help glitch or hacker
-
Re: help glitch or hacker
@RedWulf Please make me an admin account at your forum and send me the login instructions via private message. I fixed it again but from ftp I can't see what is inputed in the fields. Don't turn anymore plugins on until I see what is entered that is causing this issue. I think someone entered some code into a tag or other… -
Re: help glitch or hacker
Ok , I fixed your forum again and got rid of the bad tags that had a script… hmm very bad that people would exploit your forum. Don't trust people … no one other than yourself or people like us that have Ethics. In other words , will do no harm. I think my theme and the banner image I made for you works well for now since…
10 results