|
- Readme First! - Read and follow the rules, otherwise your posts will be closed |
|
|
|
|
|
There are currently, 237 guest(s) and 0 member(s) that are online.
You are Anonymous user. You can register for free by clicking here |
|
|
|
|
|
Security: phpMyAdmin 2.8.2 is released |
|
|
|
|
|
|
Security: Sec-Fix Patch 7.3 |
|
PHP-Nuke 7.3 security and bug fix update.
Fixes:
Path disclosure in security check of files.
Included instructions mainly cover that one but included files also cover:
|
|
Posted by Zhen-Xjell on Wednesday, June 09 @ 08:58:01 CEST (3677 reads)
(Read More... | 678 bytes more | 1 comment | Score: 0) |
|
|
|
|
Security: Inadequate Security Checking in PHP-Nuke Flavors |
|
OSC2Nuke "is an open source project combining the functionality of PHPNuke's portal system with OSCommerce's shopping cart software. Run by the Dreamlite development team, this project has been active since mid-2003. OSCNukeLite is the predecessor of OSC2Nuke". Due to inadequate security checks, the product can be made vulnerable to file inclusion attacks, SQL injection, path disclosure, etc.
|
|
Posted by Zhen-Xjell on Friday, June 04 @ 14:09:44 CEST (3959 reads)
(Read More... | 1274 bytes more | 3 comments | Score: 1) |
|
|
|
|
Security: Update - Hacking from Lacnic |
|
Timothy writes "It seems a wide variety of hits from Lacnic sites in the 200 and 201 IP range are union attempts, or calls on admin.php
Lacnic will issue a trouble ticket number, but they never reply and never close the trouble ticket. LACNIC is member of the NRO (Number Resource Organization)
The ineffectiveness of Lacnic to stop Brazilian hackers and others, and their abuse of their own trouble ticket system demands attention.
"
|
|
Posted by Zhen-Xjell on Saturday, May 29 @ 17:21:22 CEST (4641 reads)
(Read More... | 2382 bytes more | 4 comments | Score: 5) |
|
|
|
|
Security: New Nuke Cops Security System: Fortress |
|
This is an announcement on the new security system by Nuke Cops called Fortress. It is currently in testing and so far is successful. Its been implemented here at Nuke Cops today already. If testing continues positively, it will be released tonight. Watch out bad guys, you won't even know it.
|
|
Posted by Zhen-Xjell on Wednesday, April 28 @ 15:56:41 CEST (5332 reads)
(Read More... | 6 comments | Score: 3) |
|
|
|
|
Security: PHP-Nuke 7.1 with SHA1 password hashes now available |
|
maciekp writes "Mil-Sim.net has released a patch for PHP-Nuke version 7.1 allowing the use of
secure SHA1 or MD5 password hashes. Using 160bit SHA1 hashes makes your
user/admin passwords much harder to crack (compared to standard MD5), even if
the attacker manages to access your database, e.g. through a SQL injection
exploit. The hash type by default is set to SHA1 and can be easily changed in
'config.php'. No additional PHP extensions or external programs are required.
"
|
|
Posted by disgruntledtech on Sunday, February 29 @ 19:28:32 CET (6768 reads)
(Read More... | 2111 bytes more | comments? | Score: 5) |
|
|
|
|
Security: ryan1918 dot com(PHPNuke site) growing ever so big! |
|
ryan1918 writes "Well I wanted to announce saying that my security site(ryan1918.com) is growing every go big, we have hit the mark of 4,100 Registered members, our forums has hit over 16,000 posts, We have been around for almost a year now, We are one of the leading sites for security news, downloads, and help in security related items! We also now offer free webbased email with a quota of 6mbs per account, no activation needed. We also have games, Daily proxys(If you feel the need to be anonymous), and a ton more!"
|
|
Posted by disgruntledtech on Friday, February 20 @ 21:34:14 CET (9894 reads)
(Read More... | 727 bytes more | comments? | Score: 4) |
|
|
|
|
Security: Attack Fells SCO's Web Site |
|
A large-scale denial-of-service attack brought down the software maker's Web site, E-mail system, intranet, and customer-service operations.
By TechWeb News
SCO Group Inc., which has been the target of intense criticism by open-source groups angry over the company's legal challenge of Linux, was struck Wednesday by a large-scale denial-of-service attack that brought down the software maker's Web site.
No suspects have been identified in the Internet-based assault that began at 4:20 a.m. MST. The company's Web site remained unavailable into Thursday morning.
|
|
Posted by Zhen-Xjell on Thursday, December 11 @ 11:49:45 CET (4448 reads)
(Read More... | 1797 bytes more | 3 comments | Score: 1) |
|
|
|
|
Security: Hacker on the Loose |
|
cazz writes "
I just wanted you to know ASAP that Mtechnik.net and all other sites on that server closely related and belonging to Mikey have been infiltrated by a hacker.
I posted news on this at: Mythic
Until Mikey gets back from wherever he got to - I do not have further info. It appears to have been a root kit perhaps.
View What The Hacker Did
-CAZZ
Admin / mtechnik.net
"
Admin Note: For myself, I cannot even bring up his site -- not even thru Google cache.
|
|
Posted by Zhen-Xjell on Wednesday, December 10 @ 11:10:18 CET (8633 reads)
(Read More... | 17 comments | Score: 4.66) |
|
|
|
|
Security: PHP-Nuke Patched R.C. 2 |
|
This will be the last pre-stable release of the patched version of Nuke, although these files have been tested and no visible bugs have been detected they have been given a RC status tag so that any bugs i may have missed can be reported by users before they can be considered stable and bug/error -free. The following is a overhead description of what the patches cover:
. New Abstraction layer conversion.
. Variables quoted on all sql queries.
. Security check added to most variables.
. Bugs in core files fixed.
. Previous sec-fix patches applied.
Downloads:
Nuke 6.0 - Nuke
6.5 - Nuke 6.6-6.8 - Nuke
6.9 and 7.0 (ALPHA2 - fully operational, current
version to be patched shortly).
|
|
Posted by [RETIRED]chatserv on Friday, December 05 @ 10:52:20 CET (4178 reads)
(Read More... | 1662 bytes more | 1 comment | Score: 0) |
|
|
|
|
|
|
Syndication
| | | | | |