Advertisement
Free Mambo Templates - Free Joomla Templates
Joomla Hut HomeContact UsJoomla LinksMambo Forum - Joomla ForumJoomla Downloads
Home
News
Articles
Gallery
Downloads
Tutorials
Site Reviews
Flash Tutorials
Templates Demo
Joomla Links
FAQ
Advertise Here
Search
Advertisement
Seek Your Host
New York Web Design
Login Form





Lost Password?
No account yet? Register
Joomla Extensions
Joomla Templates
 
Joomla Website

Warning ! :: Security Bug found in all versions of Mambo Open Source 4.5 Print E-mail
Written by MamboHut   
Thursday, 26 February 2004

ImageFor websites that uses SEF (search engine friendly URL) option in Mambo Open Source 4.5 (all version), it's advised that you update your includes/sef.php file as soon as possible to prevent any security preach.

attached below is a copy of the e-mail that was sent out by the development team to address this issue, click on "Read more" to continue...


Due to the latest security issue Mambo users that run Mambo with SEF turned ON and have register_globals ON should make following change to their code.

Open your includes/sef.php and find this line:

Code:

while(list($key,$value)=each($_GET)) $GLOBALS[$key]=$value;

ADD this code after that:

Code:

include( "configuration.php" );

Users that don't run SEF are not affected but even they are recommended to change this.

Mambo 4.5 Stable 1.0.3 will be out soon to reflect this change.

Comments

Only registered users can write comments.
Please login or register.

Powered by AkoComment 2.0!
 
< Prev   Next >
[ Back ]
 
 
Joomla Jobs
 
 
Joomla Flash Tutorials
   
     
Home   |   Contact   |   Links   |   Forum   |   Downloads  |  Media Kit
 

© Copyright 2003 - 2006 by BUYHTTP, LLC. All rights reserved.
None of the text or images in this public website may be copied without the expressed written consent of the authors.
Powered By Joomla!

Joomla Top Sites - Your Primary Source of Joomla Traffic