vb.org Archive - warning on last thread hack

vb.org Archive (https://vborg.vbsupport.ru/index.php)

- vB3 General Discussions (https://vborg.vbsupport.ru/forumdisplay.php?f=111)

- - warning on last thread hack (https://vborg.vbsupport.ru/showthread.php?t=71417)

q8manar

11-06-2004 09:29 AM

warning on last thread hack

Hello

I have recieved warning from some programmer that told me about ttlast.php (for last 10 threads hack)
he siad you should remove $fsel from this file
becuase by this code can any hacker get the admin. encoding password for my vb

I'm using vb 3.0.3
and I checked ttlast.php and I found this code inside it .

Is this truw ?

Andreas

11-06-2004 09:36 AM

I don't know/have this ttlast.php but this could of course be possible if the script has SQL injection issues or other vulnerbilities (like many hacks do have).

All times are GMT. The time now is 07:05 AM.

X vBulletin 3.8.12 by vBS Debug Information
Page Generation 0.00973 seconds Memory Usage 1,701KB Queries Executed 10 (?)
More Information
Template Usage: (1)ad_footer_end (1)ad_footer_start (1)ad_header_end (1)ad_header_logo (1)ad_navbar_below (1)footer (1)gobutton (1)header (1)headinclude (6)option (1)post_thanks_navbar_search (1)printthread (2)printthreadbit (1)spacer_close (1)spacer_open Phrase Groups Available: global postbit showthread	Included Files: ./printthread.php ./global.php ./includes/init.php ./includes/class_core.php ./includes/config.php ./includes/functions.php ./includes/class_hook.php ./includes/modsystem_functions.php ./includes/class_bbcode_alt.php ./includes/class_bbcode.php ./includes/functions_bigthree.php Hooks Called: init_startup init_startup_session_setup_start init_startup_session_setup_complete cache_permissions fetch_threadinfo_query fetch_threadinfo fetch_foruminfo style_fetch cache_templates global_start parse_templates global_setup_complete printthread_start bbcode_fetch_tags bbcode_create bbcode_parse_start bbcode_parse_complete_precache bbcode_parse_complete printthread_post printthread_complete
Messages: