leo73.net » Based on Portal XL 5.0 ~ Rev. 1155
   
Guest Announcements

[color=green][b]Guest Announcements[/b][/color] can be seen here!! :wink:
 

Portal Board index Archivio Problemi e Suggerimenti Flash! XSS Hack Fix


 Shoutbox

You must enable Javascript to view the Shoutbox.

You must enable Javascript to view the Shoutbox.
 
Flash! XSS Hack Fix

Keywords for this topic


flash, fix, hack, xss, trovato, farlo, istruzione, aggiungi, name, bbcode, adesso, linea, trova, forums, simile


Forum locked This topic is locked, you cannot edit posts or make further replies.  Page 1 of 1
  [ 2 posts ] 
  Print view Print view | E-mail friend E-mail friend Previous topic | Next topic 
Author Message
leomauro
 Post subject: Flash! XSS Hack Fix
PostMessage posted...: Mon 13 Jun 2005, 8:45
Offline
Generale
Generale
User avatar
Users Information  Users Information
Technocrat scrive sul suo sito: tutti coloro che hanno PHP-Nuke Platinum DEVONO installare questo fix AL PIU' PRESTO POSSIBILE

Gli hackers stanno attaccando i siti che non hanno questa falla corretta

Apri
themes/YOURTHEME/forums/bbcode.tpl
(devi farlo in tutti i tuoi temi)

Trova:
Code: Select all
<!-- BEGIN flash -->

Dopo questa linea dovresti vedere:
Code: Select all
<PARAM NAME=scale VALUE=noborder>

Potrebbe esserci più di 1 linea dopo la precedente. Se non riesci a trovarla, cerca per qualsiasi linea che ha l'istruzione <param name=whatever> prima di <!-- END flash -->

In linea dopo aggiungi:
Code: Select all
<PARAM NAME="AllowScriptAccess" VALUE="never">

Adesso dovresti avere qualche cosa di simile a:
Code: Select all
<PARAM NAME=scale VALUE=noborder> <PARAM NAME="AllowScriptAccess" VALUE="never">

[hr]
Adesso trova:
Code: Select all
<EMBED src="{URL}" quality=high

Dovrebbe essere dopo quello che hai trovato precedentemente.

In linea dopo aggiungi:
Code: Select all
AllowScriptAccess="never"

Adesso dovresti avere qualche cosa di simile a:

Code: Select all
<EMBED src="{URL}" quality=high AllowScriptAccess="never"

Questo è un esempio con TPlatinum:

prima:
Code: Select all
<!-- BEGIN flash --><!-- URL's used in the movie-->
<!-- text used in the movie-->
<!-- -->
<OBJECT classid="clsid:D27CDB6E-AE6D-11cf-96B8-444553540000" codebase="http://download.macromedia.com/pub/shockwave/cabs/flash/swflash.cab#version=5,0,0,0" WIDTH={WIDTH} HEIGHT={HEIGHT}>
<PARAM NAME=movie VALUE="{URL}"><PARAM NAME=quality VALUE=high> <PARAM NAME=scale VALUE=noborder> <PARAM NAME=wmode VALUE=transparent> <PARAM NAME=bgcolor VALUE=#000000>
  <EMBED src="{URL}" quality=high scale=noborder wmode=transparent bgcolor=#000000 WIDTH={WIDTH} HEIGHT={HEIGHT} TYPE="application/x-shockwave-flash" PLUGINSPAGE="http://www.macromedia.com/shockwave/download/index.cgi?P1_Prod_Version=ShockwaveFlash">
</EMBED></OBJECT><!-- END flash -->


Dopo:
Code: Select all
<!-- BEGIN flash --><!-- URL's used in the movie-->
<!-- text used in the movie-->
<!-- -->
<OBJECT classid="clsid:D27CDB6E-AE6D-11cf-96B8-444553540000" codebase="http://download.macromedia.com/pub/shockwave/cabs/flash/swflash.cab#version=5,0,0,0" WIDTH={WIDTH} HEIGHT={HEIGHT}>
<PARAM NAME=movie VALUE="{URL}"><PARAM NAME=quality VALUE=high> <PARAM NAME="AllowScriptAccess" VALUE="never"> <PARAM NAME=scale VALUE=noborder> <PARAM NAME=wmode VALUE=transparent> <PARAM NAME=bgcolor VALUE=#000000>
  <EMBED src="{URL}" quality=high AllowScriptAccess="never" scale=noborder wmode=transparent bgcolor=#000000 WIDTH={WIDTH} HEIGHT={HEIGHT} TYPE="application/x-shockwave-flash" PLUGINSPAGE="http://www.macromedia.com/shockwave/download/index.cgi?P1_Prod_Version=ShockwaveFlash">
</EMBED></OBJECT><!-- END flash -->


Report this post
Top
 Profile  
Reply with quote  
Show post links  Users Information
Share on ...
Share on FacebookShare on TuentiShare on SonicoShare on FriendFeedShare on OrkutShare on DiggShare on DeliciousShare on Technorati
matteopaga
 Post subject:
PostMessage posted...: Sat 18 Jun 2005, 13:06
Offline
Sergente
Sergente
User avatar
Users Information  Users Information
fatto:P


Report this post
Top
 Profile  
Reply with quote  
Show post links  Users Information
Display posts from previous:  Sort by  
 

Quick Reply
Forum locked This topic is locked, you cannot edit posts or make further replies.  Page 1 of 1
  [ 2 posts ] 
 
Similar topics
Chi è bravo con flash??
Forum: Problemi e Suggerimenti
Author: MRHAWK
Replies: 8
Top
 

Who is online

Users browsing this forum: No registered users and 0 guests
 

You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot post attachments in this forum

Jump to:  
 Login/Out
Login
Username:

Register
Password:

I forgot my password
Resend activation e-mail
Log me on automatically each visit
Hide my online status this session
Term of use
 

cron


Portal Board index Archivio Problemi e Suggerimenti Flash! XSS Hack Fix



It is currently Mon 6 Feb 2012, 10:31 | All times are UTC [ DST ] Mods DatabaseImprintCrawler FeedsThe teamDelete all board cookiesReset blocks Top


Powered by phpBB® Forum Software © phpBB Group
Style Agent Orange ported for Portal XL 5.0 by php3pg.com adapted by leo73.net

Portal XL 5.0 ~ Premod 0.4 phpBB SEO
Protected by Anti-Spam ACP

News News Site map Site map SitemapIndex SitemapIndex RSS Feed RSS Feed Channel list Channel list

[ Time : 0.676s | 46 Queries | GZIP : Off
Seo : 0.0030 s ( 0.45 % ) - 1 Titles ( 4.91 % ) - 31 URLs rewritten ( 72.14 % ) - 61 URLs cached (22.95 % - saved 0.0036 s) ]