Security Update: Quicksilver Forums - AdminFusion

Register

AdminFusion

Tutorials

Post Fusion

Forum Matrix

Mark Forums Read

Go Back

AdminFusion » Security Update: Quicksilver Forums

Reply

08-19-2008, 02:12 AM	#1
Samson Groupie Join Date: Dec 2005 Location: California, USA Posts: 40	Security Update: Quicksilver Forums Just a heads up for anyone who is using Quicksilver Forums. Since the 1.4.0 release there have been three security updates that were needed. The first two were corrected in version 1.4.1: * Possibility of deleting PMs that don't belong to the user. * Error reporting reveals database password info when a connection error is displayed. The 3rd was just corrected in 1.4.2: SQL injection (PoC code failed but there's definitely missing checks) ref: secunia-31419 While the proof of concept code for the injection error failed to operate, there were some missing sanity checks which were corrected and resolve the potential for exploitation. All users of QSF are urged to upgrade at their earliest convenience. __________________ To view links or images in signatures your post count must be 10 or greater. You currently have 0 posts. \| To view links or images in signatures your post count must be 10 or greater. You currently have 0 posts. \| To view links or images in signatures your post count must be 10 or greater. You currently have 0 posts. "The past was erased, the erasure was forgotten, the lie became truth." -- George Orwell, 1984

Reply

« [MyBB News] MyBB 1.4.1 Released - Maintenance and Security Update | [MyBB News] Donating to MyBB - Help Secure the Future of MyBB »

Currently Active Users Viewing This Thread: 1 (0 members and 1 guests)

Thread Tools
Show Printable Version Email this Page
Display Modes
Linear Mode Switch to Hybrid Mode Switch to Threaded Mode

Posting Rules
You may not post new threads You may not post replies You may not post attachments You may not edit your posts BB code is On Smilies are On [IMG] code is On HTML code is Off Trackbacks are On Pingbacks are On Refbacks are On Forum Rules

Similar Threads
Thread	Thread Starter	Forum	Replies	Last Post
Why most forums fail within first year of their existence	bcmtouring	Forums General	24	08-04-2009 10:52 PM
[MyBB News] MyBB 1.2.11 Released - IMPORTANT Security Update	Industry News	Other Software	2	01-09-2008 06:23 AM
[IPB News] IPB 2.x.x Security Update (06-05-6)	Industry News	Invision Power Board	0	05-17-2006 06:07 PM
[IPB News] IPB 2.x.x Security Update (04-25-06)	Industry News	Invision Power Board	0	04-25-2006 03:08 PM
MyBB RC4 Security Update [16/08/05]	miner	Software	0	08-25-2005 08:18 AM

- Contact Us - Home - Archive - Top

All times are GMT +1. The time now is 06:42 AM. Powered by vBulletin® Version 3.8.2
Copyright ©2000 - 2010, Jelsoft Enterprises Ltd.
Content Relevant URLs by vBSEO 3.2.0

© 2009 AdminFusion | Advertising Opportunities | Legal | A member of the Crowdgather Forum Community

1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75 76 77