forums.eqdkp.com: [1.3.2e] login.php - Arbitrary Variable Overwrite Vulnerability - forums.eqdkp.com

Jump to content

Page 1 of 1
  • You cannot start a new topic
  • You cannot reply to this topic

[1.3.2e] login.php - Arbitrary Variable Overwrite Vulnerability

#1 User is offline   tsigo

  • EQdkp Developer
  • PipPipPip
  • Group: EQdkp Administrators
  • Posts: 608
  • Joined: 26-December 02
  • Gender:Male

Posted 10 July 2007 - 05:55 AM

Discovered and reported by kefka, more details available here.

The patched file for 1.3.2e and lower is attached below. If you have a highly-customized installation, a diff file is also attached. The main download has also been updated to version 1.3.2f.

If you have a default installation of 1.3.2, all you need to do is download the .php file and upload it to your server, replacing the old one.

Attached File(s)


Page 1 of 1
  • You cannot start a new topic
  • You cannot reply to this topic

1 User(s) are reading this topic
0 members, 1 guests, 0 anonymous users