MySQL Security Hole in phpVMS

mattyastic · January 11, 2014

There is a security hole affecting ALL versions of phpVMS.

The security whole affects Auth.class.php and can be exploited via the login form.

I have submitted a pull request on github, and i suggest a patch is released ASAP.

mattyastic · January 16, 2014

Is there going to be a patch for this hole released?

alblua · January 21, 2014

There is a security hole affecting ALL versions of phpVMS.

The security whole affects Auth.class.php and can be exploited via the login form.

I have submitted a pull request on github, and i suggest a patch is released ASAP.

Can you give a quick link to this or explain it? I would like to know it.

Vangelis · January 21, 2014

Everything is said in this post

http://forum.phpvms.net/topic/20635-rev-merge-pull-request-122-from-equinoxmattmaster/#entry110836

Edwin · January 21, 2014

how did you find out it was in there?

and how do you update? simply copy all files to your site?

Vangelis · January 21, 2014

I read the build forum section.

And yes you just upload everything into your server

mattyastic · January 27, 2014

Pretty appalling that a new release hasn't been made.

Sign In

MySQL Security Hole in phpVMS

Recommended Posts

mattyastic

Link to comment

Share on other sites

mattyastic

Link to comment

Share on other sites

alblua

Link to comment

Share on other sites

Vangelis

Link to comment

Share on other sites

Edwin

Link to comment

Share on other sites

Vangelis

Link to comment

Share on other sites

mattyastic

Link to comment

Share on other sites

Join the conversation