Oh no! Where's the JavaScript?
Your Web browser does not have JavaScript enabled or does not support JavaScript. Please enable JavaScript on your Web browser to properly view this Web site, or upgrade to a Web browser that does support JavaScript.

Edit Profile vulnerability patch

  1. Home
  2. News
  3. PHPFusion
  4. Edit Profile vulnerability patch
Edit Profile vulnerability patch
An exploit has been discovered by Grindordie which can change a user's password. This is regarded as low risk because it requires the user to click a bogus button which in turn executes the user's update profile page. Of course, I have produced a defensive fix which prevents this exploit from working. The patch, profile-fix, is available from the PHPFusion Core Downloads area. The full/upgrade packs have been updated to include the above fix.

Click read more to find out what changes have been made.

editprofile.php

Line 165
added this line:

above this line:

fusion_core/update_profile.php

From Line 46:
Replace:
if (!preg_match("/^[0-9A-Z]+$/i", $_POST['user_newpassword'])) {

     $error .= LAN_444."\n";

}
with:
if ($_POST['user_hash'] == $userdata['user_password']) {

     if (!preg_match("/^[0-9A-Z]+$/i", $_POST['user_newpassword'])) {

          $error .= LAN_444."
\n";

     }

} else {

     $error .= LAN_450."
\n";

}
editprofile.php language file
define("LAN_450", "Warning:</b> unexpected script execution.");
Falk November 22 2004 16,676
News Categories
Popular News
PHPFusion 9.0 Beta
PHPFusion 9.0 BetaOctober 03 2014 | Downloads
136395
Tesseract, Progress Report
Tesseract, Progress ReportApril 26 2014 | Development & Design
84850
Welcome Back
Welcome BackMarch 24 2006 | PHPFusion
80514
PHPFusion 9.0 ( Andromeda ) Stable
PHPFusion 9.0 ( Andromeda ) StableApril 27 2017 | PHPFusion
69532
Critical update - v6.00.305
Critical update - v6.00.305March 12 2006 | PHPFusion
67127
PHPFusion v7.02.06
PHPFusion v7.02.06January 27 2013 | Downloads
58865