批踢踢實業坊
›
看板
Bugtraq
關於我們
聯絡資訊
返回看板
發信人
andy@sirium.net,
看板
Bugtraq
標 題
Re: Xoops All Version -Articles- Print.PHP (ID) Blind SQL
發信站
NCTU CSIE FreeBSD Server (Thu Mar 29 07:20:59 2007)
轉信站
ptt!FreeBSD.csie.NCTU!not-for-mail
The Articles module has been updated to v1.03, which contains some input sanitising and should negate this exploit. Version 1.03 can be downloaded from
http://support.sirium.net/modules/mydownloads/viewcat.php?cid=2