You are missing our premiere tool bar navigation system! Register and use it for FREE!

NukeCops  
•  Home •  Downloads •  Gallery •  Your Account •  Forums • 
Readme First
- Readme First! -

Read and follow the rules, otherwise your posts will be closed
Modules
· Home
· FAQ
· Buy a Theme
· Advertising
· AvantGo
· Bookmarks
· Columbia
· Community
· Donations
· Downloads
· Feedback
· Forums
· PHP-Nuke HOWTO
· Private Messages
· Search
· Statistics
· Stories Archive
· Submit News
· Surveys
· Theme Gallery
· Top
· Topics
· Your Account
Who's Online
There are currently, 396 guest(s) and 0 member(s) that are online.

You are Anonymous user. You can register for free by clicking here
Union Tap Beta 3 Release
SecurityUnion Tap Beta 2 took care of many of the false positives encountered when Beta 1 was distributed. This is Beta 3 which hopefully reduces the false positives from check_num and sid values. Two versions are being released here.

Die Version:

//Union Tap
//Copyright Zhen-Xjell 2004 http://nukecops.com
//Beta 3 Code to prevent UNION SQL Injections
unset($matches);
unset($loc);
if (preg_match("/([OdWo5NIbpuU4V2iJT0n]{5}) /", rawurldecode($loc=$_SERVER["QUERY_STRING"]), $matches)) {
die("YOU ARE SLAPPED BY <a href=\"http://nukecops.com\">NUKECOPS</a> BY USING '$matches[1]' INSIDE '$loc'.");
}

Sting's Modified HA Version:

/* Hack Attempt Hybrid thanks to Zhen-Xjell's Union Tap from http://www.nukecops.com
and Raven from http://www.ravenphpscripts.com/
To whom the Nuke community owes a lot
Posted by Sting to Nuke Cops on 04/23/2004 (See http://www.nukecops.com/postp120356.html#120356) */
unset($matches);
unset($loc);
if (preg_match("/([OdWo5NIbpuU4V2iJT0n]{5}) /", rawurldecode($loc=$_SERVER["QUERY_STRING"]), $matches)) {
header("Location: hackattempt.php?$loc");
die();
}
Posted on Sunday, April 25 @ 23:21:16 CEST by Zhen-Xjell
 
Related Links
· Computer Cops
· More about Security
· News by Zhen-Xjell


Most read story about Security:
PHP-Nuke admin.php security hole - PATCHED

Article Rating
Average Score: 3.66
Votes: 3


Please take a second and vote for this article:

Excellent
Very Good
Good
Regular
Bad


Options

 Printer Friendly Page  Printer Friendly Page

 Send to a Friend  Send to a Friend

Threshold
The comments are owned by the poster. We aren't responsible for their content.

No Comments Allowed for Anonymous, please register

Re: Union Tap Beta 3 Release (Score: 1)
by foxyfemfem on Monday, April 26 @ 06:55:28 CEST
(User Info | Send a Message)
Yipeeeee Woohooo... it work!! I can access my forum admin and it doesn't effect my sid. Plus, I registered via the forums and it also accept the act_key #. I'd assume the check_num will work as well.


Powered by TOGETHER TEAM srl ITALY http://www.togetherteam.it - DONDELEO E-COMMERCE http://www.DonDeLeo.com - TUTTISU E-COMMERCE http://www.tuttisu.it
Web site engine's code is Copyright © 2002 by PHP-Nuke. All Rights Reserved. PHP-Nuke is Free Software released under the GNU/GPL license.
Page Generation: 0.081 Seconds - 163 pages served in past 5 minutes. Nuke Cops Founded by Paul Laudanski (Zhen-Xjell)
:: FI Theme :: PHP-Nuke theme by coldblooded (www.nukemods.com) ::