Fix for XSS vulnerability in uddeIM 1.7 and below

slabbi
OFFLINE
Posts: 3709
Thanks: 250
Karma: 153

15 years 3 months ago #104422 by slabbi

Warning: Undefined variable $end_tag_params in /home/joomlapolis824/public_html/libraries/kunena/External/Nbbc/src/BBCode.php on line 2321
Fix for XSS vulnerability in uddeIM 1.7 and below was created by slabbi

Hi,

today the first vulnerbility in uddeIM has been reported.

It is a XSS vulnerability (low importance) which will be fixed in the upcoming uddeIM 1.8.

The fixed "bbparser.php" in attached.

Attachment bbparser.zip not found

Post edited by: slabbi, at: 2009/07/10 17:46

uddeIM & uddePF Development
CB Language Workgroup
CB 3rd Party Developer

Attachments:

Please Log in or Create an account to join the conversation.

Moderators: beat, nant, slabbi, krileon