Shopping Cart Software
[Security Advisory] Information Leak/Vulnerability in osCMax
This is a discussion on [Security Advisory] Information Leak/Vulnerability in osCMax within the osCMax v1.7 Announcements forums, part of the osCMax v1.7 Forums category; Attention osCMax/BTS users: We have been notified of a vulnerability in the BTS system that will allow a user to ...
| |||||||
![[Security Advisory] Information Leak/Vulnerability in osCMax](http://www.oscmax.com/forums/iconimages/oscmax-v1-7-announcements/security-advisory-information-leak-vulnerability-oscmax_ltr.gif)
 | Register | FAQ | Donate | Members List | Calendar | Mark Forums Read |
|
#1
03-20-2005, 01:32 PM
| ||||
| ||||
 [Security Advisory] Information Leak/Vulnerability in osCMax Attention osCMax/BTS users: We have been notified of a vulnerability in the BTS system that will allow a user to view/execute arbitrary files on a server. If you are using osCMax or BTS with standard osCommerce, this bug affects you. This bug is fairly severe, and should be corrected immediately. The osCMax current v1.7 download file has been patched as of today. The following files are affected: main_page.tpl.php popup.tpl.php Because this problem is with the BTS template files, the best way to fix this is manually, as a patch file would most certainly break any customized template. The vulnerable code is found in all the different templates (aabox, osC, OneTable, etc) and you should patch the code in all template directories, if they remain on your server. It is also recommended that you remove any template directories that you are not using. Thank you, Michael Sasek osCDox.com If you do not have any of the vulnerable code in your templates, you are not affected by this bug. Below you will find instructions on how to correct this issue. : ****** Begin Vulnerability Fix ******** -------------------------------------------------------- In main_page.tpl.php find: Code: <?php if ($javascript) { require(DIR_WS_JAVASCRIPT . $javascript); } ?>
Code: <?php if (isset($javascript) && file_exists(DIR_WS_JAVASCRIPT . basename($javascript))) { require(DIR_WS_JAVASCRIPT . basename($javascript)); } ?>
--------------------------------------------------------- Find: Code: if (isset($content_template)) {
Code: if (isset($content_template) && file_exists(DIR_WS_CONTENT . basename($content_template))) {
Find: Code: require(DIR_WS_CONTENT . $content_template); Code: require(DIR_WS_CONTENT . basename($content_template)); In popup.tpl.php find: Code: <?php if ($javascript) { require(DIR_WS_JAVASCRIPT . $javascript); } ?>
Code: <?php if (isset($javascript) && file_exists(DIR_WS_JAVASCRIPT . basename($javascript))) { require(DIR_WS_JAVASCRIPT . basename($javascript)); } ?>
    |
 |
« Downloads section updated.
|
- »
| Thread Tools | |
| |
Similar Threads | ||||
| Thread | Thread Starter | Forum | Replies | Last Post |
| osCMax 2.0RC2 Security Patch/Update 051112 | wilde-uk | osCMax v2 Installation issues | 5 | 04-12-2006 08:45 PM |
| Security Patch osCMax 2.0RC2 | warrenthewindmill | osCMax v1.7 Discussion | 2 | 12-04-2005 10:50 AM |
| osCMax 2.0RC2 Security Patch/Update 051112 | michael_s | Announcements | 0 | 11-27-2005 10:12 AM |
| Information Box in RC2... | [wicked] | osCMax v2 Customization/Mods | 0 | 10-21-2005 06:00 PM |
| Security Patches for osCMax v1.7?? | jpepper | osCMax v1.7 Discussion | 2 | 08-12-2005 11:49 AM |
All times are GMT -8. The time now is 01:02 PM.