>> Site Map >> Forums >> PHP-Nuke Security
Forum module - topics in forum:
PHP-Nuke Security - Been hacked? or have a question about securing your site, here's the place.
upgrading phpbb 2.0.15 upgrading to 2.0.17 under nuke
i am having trouble upgrading the formus
i have tried to upgrade and when i installed the upgrade, when i click on a post it just goes to a blank page....
anyone else have these problems?!
regards Gene
I can see your forum posts.
On a side note I see you are now using a version of nuke newer than 7.6, did you upgrade the site too?
You know we don't support versions from 7.7 onwards right? these are so insecure it's beyond belief.
my host (which happens to be my dad) updated it... i had no say... basicly...
re forums.. i took the patch off again... so i am back using .15 so that people could use the forums...
Well, not to be blunt but your dad has no idea how he has f#cked up your site.
Your site now has more holes than swiss cheese.
well i now have the paid for latest version... (again no say) but that is spose to fix the SQL variable vulnerabilities..... now i just have to try and patch the rest of the problems... grrrr
Really!!!!
7.6 with patch 3.1 is more secure than 7.7-7.9 with patches.
Oh well.
You may as well just leave a note on your frontpage with your passwords.
as i said.. not my choice... i didnt say i was happy about it either... and i got issues with the admin panel now too...
Well maybe you should direct your host/father to countless nuke sites where he can read about how holey it is.
Maybe he'll then allow you to go back to 7.6 I believe you were using.
BTW, your site is slow as hell now too.
wasn't like that before.do you know where their is a patch 7.6 for the cross site scripting vulnerabilities??? thats what he is most worried about....
The links to chatservs patches on our front page will be totally up to date with known vulnerabilities.
Believe me when I say this because I don't say things for the fun of it, the best current nuke setup is phpnuke 7.6 patched to 3.1 and sentinel.
Using anything else should come with a government health warning.
whats the main problem with the later versions (namely 7.9)... mostly the wysiwyg setup ???
The editor itself isn't a bad thing and if incorporated correctly is fine.
It's the basic ripping out of all nukes security to get the editor too function.
Mainly its is the TinyMCE, but there are some other problems/bugs/vulnerablities in those version which FB created again. There are in the meanwhile example enough to prove those version aren't save.
Recommendation: DON'T USE PHP-Nuke 7.7 and up.
BL
i have been doing google searches for 7.9 for vulnuraibilties and not finding anything... arcording to what i have been reading TinyMCE has been fixed in 7.9??? i am haveing trouble finding any vulnerabilities / patches for 7.9....
