• twitter image
  • facebook image
  • youtube image
  • linkedin image
Language: CMS Made Simple Czech CMS Made Simple France CMS Made Simple Spain CMS Made Simple Hungary CMS Made Simple Russia CMS Made Simple Netherlands

View unsolved topics
View unanswered posts | View active topics


Board index » Official Boards » General Discussion

All times are UTC




Post new topic Reply to topic  Page 1 of 1
  [ 6 posts ] 
  Print view Previous topic | Next topic 
Author Message
johnbmcdonald
 Post subject: CMS Made Simple 'cms_language' Cookie Parameter Directory Traversal Vulnerabilit
PostPosted: Sun Nov 30, 2008 5:28 am 
Offline
Forum Members
Forum Members
User avatar

Joined: Mon May 14, 2007 8:01 pm
Posts: 60
Location: Edmond, OK, USA
Just ran across this, thought you'd like to know:

http://www.securityfocus.com/bid/32535

John
Top
 Profile  
 
RonnyK
 Post subject: Re: CMS Made Simple 'cms_language' Cookie Parameter Directory Traversal Vulnerabilit
PostPosted: Sun Nov 30, 2008 12:21 pm 
Offline
Dev Team Member
Dev Team Member
User avatar

Joined: Wed Oct 25, 2006 8:29 pm
Posts: 4977
Location: Raalte, the Netherlands
Thanks John,

will pass it on for examination....

Ronny
Top
 Profile  
 
Dee
 Post subject: Re: CMS Made Simple 'cms_language' Cookie Parameter Directory Traversal Vulnerabilit
PostPosted: Sun Nov 30, 2008 12:48 pm 
Offline
Power Poster
Power Poster

Joined: Sun Mar 19, 2006 8:46 pm
Posts: 1202
Location: the Netherlands
Has already been picked up by calguy.

Replace admin/lang.php with the latest revision to fix.

Regards,
D
Top
 Profile  
 
johnbmcdonald
 Post subject: Re: CMS Made Simple 'cms_language' Cookie Parameter Directory Traversal Vulnerabilit
PostPosted: Mon Dec 01, 2008 4:16 pm 
Offline
Forum Members
Forum Members
User avatar

Joined: Mon May 14, 2007 8:01 pm
Posts: 60
Location: Edmond, OK, USA
Thanks!  :)
Top
 Profile  
 
michi1979
 Post subject: Re: CMS Made Simple 'cms_language' Cookie Parameter Directory Traversal Vulnerabilit
PostPosted: Tue Dec 02, 2008 10:25 pm 
Offline
Forum Members
Forum Members

Joined: Sun Aug 10, 2008 12:52 pm
Posts: 92
Location: Nuernberg
Hello,
is this fix also included in 1.5 ?

Greetings,
Michael
Top
 Profile  
 
alby
 Post subject: Re: CMS Made Simple 'cms_language' Cookie Parameter Directory Traversal Vulnerabilit
PostPosted: Tue Dec 02, 2008 11:26 pm 
Offline
Support Guru
Support Guru
User avatar

Joined: Mon Jul 04, 2005 5:12 pm
Posts: 4821
Location: Ferrara, Italy
michi1979 wrote:
is this fix also included in 1.5 ?


yes

Alby

_________________
CMSMS Support Team
Italian Admin and Moderator

Plugins: Geolocate hostip, Multiple random image, Image rotator (beta), Content Pagination
Modules: ForumMadeSimple (Howto), TranslationManager
Multilingual: MLE is not CMSMS
Top
 Profile  
 
Display posts from previous:  Sort by  
Post new topic Reply to topic  Page 1 of 1
  [ 6 posts ] 

Board index » Official Boards » General Discussion

All times are UTC


Who is online

Users browsing this forum: No registered users

You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot post attachments in this forum

Search for:
Jump to:  
Arvixe - A CMSMS Partner