View All ProductsRandom Products

Garage System

IP.Board: IPB 3.2.x
Price: $ 35.00

Moderator Action Alert

IP.Board: IPB 3.2.x
Price: $ 15.00

Donation Tracker

IP.Board: IPB 3.2.x
Price: $ 35.00

Collections System

IP.Board: IPB 3.2.x
Price: $ 30.00

Auto Anniversary Greeter

IP.Board: IPB 3.2.x
Price: $ 10.00

0

IP.Board 2.3.6 and 3.0.5 Security Update

Started by News Bot, Mar 08 2010 08:34 AM

You cannot reply to this topic

No replies to this topic

#1 News Bot

Dedicated Member

Members
1,215 posts

IP.Board Version:N/A

Posted 08 March 2010 - 08:34 AM

It has come to our attention that there is a possible XSS exploit present in both IP.Board 2.3.6 and 3.0.x. This vulnerability allows the attacker to insert CSS or Javascript into certain BBCodes that is executed when a user displays the page.

Resolution
Please download the relevant zip for your IP.Board. Expand the zip file and upload the file over the copy on your server. No other action is required.

IP.Board 3.0.5

305xss_march10.zip (13.29K)
: 67

IP.Board 2.3.6

236xss_march10.zip (15.61K)
: 26

The main download zips have been updated. If you have downloaded either 2.3.6 or 3.0.5 since the time of this announcement, then you do not need to patch your installation.

Source: Click Here

Back to top

Back to IPS News

1 user(s) are reading this topic

0 members, 1 guests, 0 anonymous users