View Single Post
  #3  
Old 29 Feb 2012, 08:00
stangger5's Avatar
stangger5 stangger5 is offline
 
Join Date: Jan 2005
Starting with 2.7.1+

To fix that exploit was to edit one line..


Block Disabled:      (Update License Status)  
Suspended or Unlicensed Members Cannot View Code.

change to

Block Disabled:      (Update License Status)  
Suspended or Unlicensed Members Cannot View Code.

Originally Posted by BirdOPrey5
Comment should be OK because of they way strings are put in the database. The problem was s_id was allowed to be a string when it was supposed to be an int, that is what allowed the exploit.

The ibp_cleansql function needs to be changed to accept a second argument that says what type of data it is (string or int) and clean it differently depending on what it is supposed to be.

vBulletin has built in cleaning functions too that can/should be used.
__________________
vb ibProArcade: Download Game, Game Challenge, Report Game, Daily Game Systems.
40,000+ Flash and HTML5 Games,, and more can be found at: next-level-arcade.com
Reply With Quote