|
|
|
|
- Readme First! - Read and follow the rules, otherwise your posts will be closed |
|
|
|
|
|
There are currently, 343 guest(s) and 0 member(s) that are online.
You are Anonymous user. You can register for free by clicking here |
|
|
|
|
|
|
Due to the recent security advisories released lately, and Nuke Cops was not notified in advance, we scrambled to understand the exploits. Once that was done, we worked on getting out patches immediately. Unfortunately because these advisories are not sent to Nuke Cops, that leaves the general public-at-large also vulnerable. So it is recommended to stay on top of securing your PHP-Nuke sites by visiting Nuke Cops daily ...
... watching the Nuke Security forums and Security news articles. I've gotten too many reports of people being hacked because the patches we released were not implemented.
Nothing is perfect in life, but we strive to patch immediately. So stay tuned, because I'm sure none of you want a hacked up site.
I'd like to say thanks to the staff here for working so quickly to release the patches such that the community can walk away with a strong PHP-Nuke install. Going forward, I ask that Nuke Cops be involved in advance exploit notifications such that patches can be supplied when advisories are made public.
Thanks!
|
|
Posted on Tuesday, October 14 @ 16:59:25 CEST by Zhen-Xjell |
|
|
|
|
| |
|
Average Score: 5 Votes: 8
|
|
|
|
|
|
| The comments are owned by the poster. We aren't responsible for their content. |
| | | | |
No Comments Allowed for Anonymous, please register | | | | |
Re: Your PHP-Nuke Hacked? (Score: 1) by Audioslaved on Tuesday, October 14 @ 18:39:04 CEST (User Info | Send a Message) http://www.audioslaved.com | To view bugs/vulnerabilities related to PHP-NUKE you can go to bugtraq and do a search for nuke. Most of the bugs listed still do not have a solution posted from the community. I have submitted the post from this site for the admin.php vulnerability as a solution for the problem. If anyone wants to check what is listed there, here is the URL
[url]http://www.securityfocus.com/search[/url], once there just search for nuke. It will bring them up. It would probably be best to post solutions for all the current bugs that have been fixed.
|
| | | | |
Re: Your PHP-Nuke Hacked? (Score: 1) by Vchat20 on Tuesday, October 14 @ 21:50:05 CEST (User Info | Send a Message) http://www.pokeradio.com/ | I run 7.0 on my site. do I need these patches? I asked this same question back in the Web Links and downloads patch article, but noone answered. |
| | | | |
A note of thanks (Score: 1) by CrazyDog1 on Tuesday, October 14 @ 22:10:42 CEST (User Info | Send a Message) http://crazydogsworld.com | Thank you ZX, CS, and the rest of the nukecops community for keeping us all up to date. I keep a news feed on my sites from here among a couple other things just so I can stay up to date. Your services reflect greatly on the commnuity. Thanks again, and keep up the good work! |
| | | | |
Re: Your PHP-Nuke Hacked? (Score: 1) by Jeruvy on Wednesday, October 15 @ 10:21:59 CEST (User Info | Send a Message) | Not to toot my own posts but I have started a couple threads in the security forum to discuss these concerns.
One in entitles Full-Disclosure;
The other is How to Patch and distribute.
I would like to see if the developers (or maintainers of PHP-Nuke) can come up with a a common method of dealing with this.
Trust me, what you've seen on bugtraq to date is the tip of the iceberg as more php vulnerabilities get disclosed.
J.
|
| | | | | |
|