Home » 2009 » December » 3 » 40 vulnerabilities in SMF 1.1.10/SMF 2.0RC2 by elhacker.net (Simple Audit)
7:47 AM
40 vulnerabilities in SMF 1.1.10/SMF 2.0RC2 by elhacker.net (Simple Audit)
This is the first batch of vulnerabilities found by the SimpleAudit team from elhacker.net
http://labs.elhacker.net/simpleaudit

Our goal is to evaluate the security of SMF 2.0 before using it on our own server, and we have found several security vulnerabilities.

The vulnerabilities that also apply to SMF 1.1.10 were fixed by the SMF team today, on SMF 1.1.11 visit simplemachines.org for details.

You can review the list of the published vulnerabilities in:
http://code.google.com/p/smf2-review/issues/list



 CSRF, RCE   PHP Remote Code Execution SMF2 www.kernel32
 CSRF   CSRF theme change SMF2, SMF1 www.kernel32
 CSRF   Subforum Category Collapse CSRF SMF2, SMF1 www.kernel32
 CSRF   CSRF en el gestor de servidores de paquetes SMF2, SMF1 www.kernel32
 XSS   XSS in package server manager SMF2, SMF1 www.kernel32
 CSRF   CSRF package deletion and installed package disclosure SMF2 www.kernel32
 CSRF, XSS   Attached files configuration CSRF SMF2 www.kernel32
 XSS   XSS in "Enable basic HTML in posts" SMF2 sirdarckcat
 RFD   Remote File Disclosure (solo en logs, y similares) SMF2 sirdarckcat
 CSRF   CSRF en Moderation Preferences SMF2 sirdarckcat
 XSS   XSS en el censurador de palabras SMF2, SMF1 sirdarckcat
 CSRF   CSRF in Polls SMF2, SMF1 sirdarckcat
 XSS   installer XSS SMF2 brlvldvlsmrtnz
 XSS   XSS in the installer (install.php) SMF2 cicatriz.r00t
 CSRF   CSRF in the message rule manager SMF2 cicatriz.r00t
 XSS   XSS in smileys manager SMF2 cicatriz.r00t
 XSS   Error log XSS SMF2 www.kernel32
 CSRF   Arbitrary package deinstalation CSRF SMF2 www.kernel32
 XSS   User search XSS SMF2 www.kernel32
 XSS   language manager CSRF+XSS SMF2 cicatriz.r00t
 XSS   XSS in forum name SMF2 ysk.sft
 XSS   XSS in logo. SMF2 cicatriz.r00t
 CSRF, XSS   CSRF in the posts settings SMF2 brlvldvlsmrtnz
 XSS   Language search XSS SMF2 brlvldvlsmrtnz
 XSS   XSS in theme name of themes and layout settings. SMF2 brlvldvlsmrtnz
 XSS   XSS in member options with theme name SMF2 brlvldvlsmrtnz
 XSS   XSS in theme url and settings SMF2 brlvldvlsmrtnz
 XSS   XSS in modify themes with theme names SMF2 brlvldvlsmrtnz
 XSS, CSRF   XSS in package manager / options SMF2 cicatriz.r00t
 CSRF   CSRF permite darle permisos a los usuarios normales para modificar permisos del foro SMF2 ysk.sft
 CSRF   CSRF join 2 topics . SMF2 ysk.sft
 CSRF   CSRF permite borrar una encuesta SMF2 ysk.sft
 CSRF   CSRF permite elevar privilegios de usuarios normales para modificar los smileys SMF2 ysk.sft
 DoS   RSS DoS SMF2, SMF1 www.kernel32
 CSRF   Session token stealling SMF2, SMF1 www.kernel32
 ----   ReDoS en htmltrim SMF2 sirdarckcat
 DoS   Forum access DoS SMF2 sirdarckcat
 XSS   XSS en la subida de archivos. SMF2 ysk.sft
 CSRF   Message rule CSRF SMF2 brlvldvlsmrtnz
 CSRF   Steal session token SMF2, SMF1 www.kernel32
Views: 28023 | Added by: b1zz4rd | Rating: 0.0/0
Total comments: 261 2 3 »
26  
Есть положительные devleopers слишком много, и не обеспечивают ?

Похищать посмотрим на многоназывают WoW - убийцы : EQ2 , AoC , военных действий, все три [URL = http://www.rmtest.com/rmt/pso2.html ] PSO2 RMT最 安 値[/ URL] границ в оплату номера и не принесли / держать игроков дюйма

1. ) Сверхраздутым они сами . (WAR wowkiller wutt ? RvR игру слишком manybugs и сложных вопросов на начало ( AoC малое смещение в [URL = http://www.rmtest.com/rmt/cabal.html ] CABAL RMT最 安 値[/ URL] на старте (тьфу злой ведьмы эльфов и умных мастеров в войне, отсутствует способность и т.д. в АЦ)

4 . ) Недостаточность удовлетворены, и сократить бесчувственной вещи, которые они сказали, будет дюйма ( 1 STRIFE собственности Новой Зеландии - городской район с каждой стороны , а затем 3 с каждой стороны обещали ) (не разумно квесты в Champions Online , чтобы достичь макс LVL)

5 . ) Год выхода слишком рано, по-видимому для больше бета времени. ( Смотрит борются и АЦ)

25  
Girls with glasses:
http://girlswithglasses.blognet.pw/?aline
updates every daytime

24  
Извините за топик. Удалите пожалуйста.

23  
f8l
d2a

22  
g8i

21  
XRumer 7.7.35 ELITE is the best program for mass posting.

+ automatically register profiles, edit profiles, make topics/replies on forums
+ automatically confirm links in e-mails (and auto-register email accounts for that!)
+ automatically break captchas during registering and posting (only XRumer 7.7.35 can break more than 150 types of captchas, included ReCaptcha and flash-captchas)
+ XRumer recognize and answer the antibot-questions (like "2+2=?", "What is capital of England?", etc.; ONLY XRumer 7.7.35 have answers on more than 70.000 antibot questions!)
+ this program has unique intellectual mode "Antispam": its a spesial thematic posting
+ automatically update and check proxy-lists for 100% anonymity
+ its works withs blogs and social networks
+ "Mass-PM" mode make mass posting personal messages to ALL members of ALL forums simultaneously
+ there are lot of articles about XRumer on recourses with high reputation: "Washington post", "WikiPedia.Org", "Sophos Labs", "Symantec"
+ monthly updates increase powerful of this software everytime, XRumer has a 7-years history

And, by the way, XRumer price will be officially increased up to $650 in 5 january 2013, with new important functions.

Need more info? Just Google wink

20  
DVNmoBcs http://www.ewokalypse.com/forum/viewtopic.php?f=16&t=6123 FZIycAuj http://www.sunenergy.od.ua/forum/viewtopic.php?f=4&t=8447 YSChvCfv http://afondpourjo.free.fr/forum/index.php?showuser=255746 NKDgrDte http://www.aquariumthailand.com/webboard/index.php?action=profile;u=40502 SXFnsBis http://hellabjorn.com/ds/forum/viewtopic.php?f=3&t=751 EXQvwQei http://www.gmenterprisess.com/forum/index.php?topic=66436 PFNziNyy http://www.wheresthatdj.com/forum/viewtopic.php?f=2&t=10307 GXWkjOwl http://baylake.eu/forum/memberlist.php?mode=viewprofile&u=20291 ELSuvSsg http://forum.voidms.com/index.php?threads/cheapuggssales-webeden-net-tuilzie.5944/ INZwtUyc http://67.110.250.170/cis231/viewtopic.php?f=1&t=2878 HUDbaUla http://norogh.jtbclan.com/viewtopic.php?f=26&t=808973 OKLpgNgk http://familiasanabria.com/index.php?topic=260154 WNYodRif http://sync.mdcraft.net/index.php?topic=131417 CHXlkQqc http://haizam.net/v4/member.php?37921-Biarsemarse MZMuoDcs http://fragshock.com/forum/profile.php?mode=viewprofile&u=1610 ZPWeaCki http://greengrease.scripts.mit.edu/forum/viewtopic.php?f=3&t=60125 ZECnqBzd http://pinoycamp.com/viewtopic.php?f=9&t=120183 TGQauDmo http://www.osk.msu.ru/forum/threads/cheapuggssales-webeden-net-relics.17687/ ZXZgyVox http://www.talentanet.com/comunidad/viewtopic.php?f=2&t=2314 VAKcvXzx http://www.starcable.in/viewtopic.php?f=2&t=96586 BKPguVuo http://www.belingtonnazarene.org/index.php/2011-10-29-18-14-44/sermon-series/video/14 UFVzcTjy http://rethinkingmarxism.org/conferencesupport/node/196305 DVWhvNbo http://2hl-el3rb.com/vb/showthread.php?p=239251 MICzqEht http://exquisitecollection.vivaguide.info/forum/viewtopic.php?f=3&t=39105 CZKjlAdp http://www.allfreeprograms.com/forum/index.php?action=profile;u=320153 AASjrDld http://gb.chinatimes.com/gate/gb/forums1.chinatimes.com/english/Forum.asp?ArticleID=6275&History=0&Page1=1 PXPynDli http://gods.co.in/forums/index.php?action=profile;u=4183 JJPyjWyz http://thailandlotus.com/Home/index.php?action=profile;u=133261 JHYgtOxv http://worldragnarok.com/forum/index.php?action=profile;u=18671 SEOjpJze http://landofavari.com/forum/index.php?action=profile;u=73789 NOFgrZos http://www.kpearchanon.gr/forum/index.php?action=profile;u=3966 SWRamArw http://www.talismanscholarship.co.uk/forum/profile.php?id=553482 NKVjpIhp http://www.r-masoccer.com/webboard/index.php?action=profile;u=1011221 BGZgkPkj http://www.chiangmaihits.com/forum/index.php?action=profile;u=3109 MRDqzOgp http://www.z-spot.be/forum/member.php?u=115709 TQFrzKgg http://dm.minewin.com/index.php?action=profile;u=142789 UCNjtZwi http://stydenty.com/user/cerobripise/ BWHixYjb http://pointlessguardians.com/forum/index.php?action=profile;u=13128 IRJirUnb http://www.datacoop.org/forum/index.php?action=profile;u=14850 VOMupDct http://dgerard.com/punbb/profile.php?id=419738 DYQrvGyt http://skittletestsite.host.org/member.php?1188-NonPlobby BARvsQjv http://select-all.net/forum/index.php?action=profile;u=1096570 MNWjnAul http://ja-obcan.info/forum/profile.php?id=475496 ZOZsoXxo http://www.ratanadho.com/webboard/index.php?action=profile;u=18343 KMRjnTvy http://naszajazda.pl/profile.php?mode=viewprofile&u=24492 SYHnsEfb http://www.thunderoos.com/member.php?114333-conapapting ZVVfmGob http://afondpourjo.free.fr/forum/index.php?showuser=255746 XICevNil http://www.paradisetours.kg/rus/user/Lispspincob/ OSOecFbp http://www.freshenup.co.uk/forum/profile.php?id=747192 IJFixAnb http://haizam.net/v4/member.php?37921-Biarsemarse

19  
Because of the wide array of benefits it has, it's no wonder why so many people want to take this drug, and why it has become such a best seller. Because of the wide array of benefits it has, it's no wonder why so many people want to take this drug, and why it has become such a best seller. http://www.stonesoupcoaching.com/ - generic lexapro cost You can purchase Escitalopram Lexapro online without prescription. It's part of a group of drugs called selective serotonin reuptake inhibitors.

18  
Известный фонд Партнер создан для тех, кто хочет обрести финансовую независимость.
Безвозмездные выплаты и взаимная помощь. Доход и вклады под высокие проценты. Акции бонус для всех клиентов. Форум с оплатой за сообщения. пишите icq: 61853381 или http://bf-partner.com

17  
The particular Infantino Child Provider is a superb substitute for the particular child stroller or perhaps portable provider to your child travel wants. Similar to some other companies, that gives you to keep near the child although liberating upwards the hands regarding other pursuits for instance family jobs and also consumer banking. Infantino continues to be in operation for approximately 15 decades and contains made top quality child toys and games, bouncers, and also child's crib components. Their particular child provider has been made out of ease and comfort at heart. The particular Infantino Child Provider will come in a couple of sorts: lengthy use and also trend. The particular lengthy use has been made for a lot more features and also ease and comfort. That is developed for many who must utilize their particular provider regarding long periods of time regarding routines these kinds of for as long excursions for the retail complex or even a evening on the leisure playground. The particular polyurethane foam connectors as well as the breathable cloth get this provider secure for your father or mother as well as the child. The fashion provider sort, although nonetheless useful, has been created for type and also trend. There are numerous types and also shades to match several likes.

The particular Infantino child provider is manufactured out of resilient components who have which can have longevity. It is often trustworthy inside avoiding the child coming from falling. ("zk007zhihui008")Although they've got a history of earning trustworthy companies, a couple of with the designs are already were recalled as a result of chance regarding suffocation. The particular Infantino SlingRider and also Wendy Bellissimo Sling are already were recalled. You will find the particular recollect information on their particular internet site. These kinds of slings have been developed you might say to be able to may cause chance regarding suffocation. They've got some other designs using a many different layout from your above mentioned a couple of designs. These kinds of types are already taken from your industry which means accessible designs needs to be risk-free regarding utilize. The particular Infantino child provider offer you ease and comfort for your child as well as the father or mother about extended trips. The particular provider will be elegant and will match up many wardrobes and also types. The infant's basic safety will be most important as a result you ought to check out their particular web site to find out which usually designs have been were recalled , nor obtain related designs should they can be obtained.

In the event you would certainly want to examine some other companies for the Infantino Child Provider, check out Child Companies and also Back packs. You may get information on designs including the Hotslings Child Provider.

1-10 11-20 21-26
Name *:
Email *:
Code *: