Menu
Forums
All threads
Latest threads
New posts
Trending threads
New posts
Search forums
Trending
What's new
New posts
New profile posts
Latest activity
Members
Current visitors
New profile posts
Search profile posts
Upgrades
Log in
Register
What's new
Search
Search
Search titles only
By:
All threads
Latest threads
New posts
Trending threads
New posts
Search forums
Menu
Log in
Register
Navigation
Install the app
Install
More options
Contact us
Close Menu
Forums
Server Development
Habbo Retros
Habbo Releases
CMS Releases
Illumina CMS / Zap CMS - Possible xss patch
JavaScript is disabled. For a better experience, please enable JavaScript in your browser before proceeding.
You are using an out of date browser. It may not display this or other websites correctly.
You should upgrade or use an
alternative browser
.
Reply to thread
Message
<blockquote data-quote="Johno" data-source="post: 297719" data-attributes="member: 6980"><p>Hey</p><p></p><p></p><p>This is not much but may help some people, in case you have any staff that will abuse having access to housekeeping. It was possible for staff posting news articles to xss your site. If they included meta / JavaScript redirect code in the title or snippet they could redirect users as soon as they login.</p><p></p><p>In lightcms.php replace the entire "getMainStories" function with the one below;</p><p></p><p>Yes this is a small release but may help some people, going to hate then don't bother to post.</p><p></p><p>[CODE]</p><p></p><p>public static function getMainStories($amt) {</p><p> global $db, $tpl, $light;</p><p> if($r = $db->query("SELECT id,title,topstory_image,snippet FROM site_news ORDER BY id DESC LIMIT " . $amt . "")) {</p><p> $c = 0;</p><p> while($a = $r->fetch_assoc()) {</p><p> $disp = 'block';</p><p> $imgurl = $a['topstory_image'];</p><p> if($c > 0) { $disp = 'none'; }</p><p> $_seo = $a['id'] . "-" . strtolower(str_replace(strip_tags(' ', '-', $a['title'])));</p><p> echo '<div class="topstory" style="background-image: url(' . $imgurl . '); display: ' . $disp . ';"> </p><p> <h4>Latest news</h4> </p><p> <h3><a href="' . WWW . '/articles/' . $_seo . '">' . $light->filter(strip_tags($a['title'])) . '</a></h3> </p><p> <p class="summary"> </p><p> ' .$light->filter(strip_tags($a['snippet'])) . '</p><p> </p> </p><p> <p> </p><p> <a href="' . WWW . '/articles/' . $_seo . '">Read more &raquo;</a> </p><p> </p> </p><p> </div>'; </p><p> $c++;</p><p> }</p><p> echo '<div id="topstories-nav" style="display: none"><a href="#" class="prev">&laquo; Previous</a><span>1</span> / ' . $c . '<a href="#" class="next">Next &raquo;</a></div>';</p><p> }</p><p> else {</p><p> $db->databaseError($db->error);</p><p> }</p><p> }</p><p></p><p>[/CODE]</p></blockquote><p></p>
[QUOTE="Johno, post: 297719, member: 6980"] Hey This is not much but may help some people, in case you have any staff that will abuse having access to housekeeping. It was possible for staff posting news articles to xss your site. If they included meta / JavaScript redirect code in the title or snippet they could redirect users as soon as they login. In lightcms.php replace the entire "getMainStories" function with the one below; Yes this is a small release but may help some people, going to hate then don't bother to post. [CODE] public static function getMainStories($amt) { global $db, $tpl, $light; if($r = $db->query("SELECT id,title,topstory_image,snippet FROM site_news ORDER BY id DESC LIMIT " . $amt . "")) { $c = 0; while($a = $r->fetch_assoc()) { $disp = 'block'; $imgurl = $a['topstory_image']; if($c > 0) { $disp = 'none'; } $_seo = $a['id'] . "-" . strtolower(str_replace(strip_tags(' ', '-', $a['title']))); echo '<div class="topstory" style="background-image: url(' . $imgurl . '); display: ' . $disp . ';"> <h4>Latest news</h4> <h3><a href="' . WWW . '/articles/' . $_seo . '">' . $light->filter(strip_tags($a['title'])) . '</a></h3> <p class="summary"> ' .$light->filter(strip_tags($a['snippet'])) . ' </p> <p> <a href="' . WWW . '/articles/' . $_seo . '">Read more »</a> </p> </div>'; $c++; } echo '<div id="topstories-nav" style="display: none"><a href="#" class="prev">« Previous</a><span>1</span> / ' . $c . '<a href="#" class="next">Next »</a></div>'; } else { $db->databaseError($db->error); } } [/CODE] [/QUOTE]
Insert quotes…
Verification
Post reply
Forums
Server Development
Habbo Retros
Habbo Releases
CMS Releases
Illumina CMS / Zap CMS - Possible xss patch
Top