GetSimple CMS Security Vulnerabilities Notification

The following warnings occurred:

Warning [2] Undefined array key "threadviews_countguests" - Line: 745 - File: showthread.php PHP 8.1.31 (Linux)

File	Line	Function
/inc/class_error.php	153	errorHandler->error
/showthread.php	745	errorHandler->error_callback

Warning [2] Undefined array key "allowautourl" - Line: 584 - File: inc/class_parser.php PHP 8.1.31 (Linux)

File	Line	Function
/inc/class_error.php	153	errorHandler->error
/inc/class_parser.php	584	errorHandler->error_callback
/inc/class_parser.php	228	postParser->parse_mycode
/inc/functions_post.php	830	postParser->parse_message
/showthread.php	916	build_postbit

Warning [2] Undefined property: MyLanguage::$thread_modes - Line: 46 - File: showthread.php(1650) : eval()'d code PHP 8.1.31 (Linux)

File	Line	Function
/inc/class_error.php	153	errorHandler->error
/showthread.php(1650) : eval()'d code	46	errorHandler->error_callback
/showthread.php	1650	eval

Thread Rating:

0 Vote(s) - 0 Average
1
2
3
4
5

GetSimple CMS Security Vulnerabilities Notification

Carlos Offline

Offline

Posting Freak

Posts: 3,491
Threads: 106
Joined: Mar 2010

#12

2013-02-14, 17:30:31

(2013-02-14, 09:11:55)htbridge Wrote:
(2013-02-14, 08:53:05)Carlos Wrote: Just a question: is there any vulnerability that can be exploited by non-authenticated users?

Yes, all of them. However, they can be used only against the administrator.

Sorry I didn't express myself well.

So I understand that those vulnerabilities can only be exploited with the intervention of a logged-in administrator.
Nice to know.

Reply

« Next Oldest | Next Newest »

Messages In This Thread

GetSimple CMS Security Vulnerabilities Notification - by htbridge - 2013-02-12, 01:15:20

RE: GetSimple CMS Security Vulnerabilities Notification - by Connie - 2013-02-13, 17:31:57

RE: GetSimple CMS Security Vulnerabilities Notification - by shawn_a - 2013-02-14, 00:27:38

RE: GetSimple CMS Security Vulnerabilities Notification - by Connie - 2013-02-14, 01:37:42

RE: GetSimple CMS Security Vulnerabilities Notification - by htbridge - 2013-02-14, 07:22:05

RE: GetSimple CMS Security Vulnerabilities Notification - by shawn_a - 2013-02-14, 07:59:07

RE: GetSimple CMS Security Vulnerabilities Notification - by htbridge - 2013-02-14, 08:35:48

RE: GetSimple CMS Security Vulnerabilities Notification - by shawn_a - 2013-02-14, 08:46:25

RE: GetSimple CMS Security Vulnerabilities Notification - by htbridge - 2013-02-14, 09:11:55

RE: GetSimple CMS Security Vulnerabilities Notification - by Carlos - 2013-02-14, 17:30:31

RE: GetSimple CMS Security Vulnerabilities Notification - by Carlos - 2013-02-14, 08:53:05

RE: GetSimple CMS Security Vulnerabilities Notification - by shawn_a - 2013-02-14, 09:33:49

RE: GetSimple CMS Security Vulnerabilities Notification - by WebDevandPhoto - 2013-02-14, 21:50:49

RE: GetSimple CMS Security Vulnerabilities Notification - by mvlcek - 2013-02-14, 22:12:24

RE: GetSimple CMS Security Vulnerabilities Notification - by shawn_a - 2013-02-15, 00:10:45

RE: GetSimple CMS Security Vulnerabilities Notification - by WebDevandPhoto - 2013-02-15, 20:26:10

RE: GetSimple CMS Security Vulnerabilities Notification - by shawn_a - 2013-02-15, 23:30:52

RE: GetSimple CMS Security Vulnerabilities Notification - by WebDevandPhoto - 2013-02-16, 12:57:51

RE: GetSimple CMS Security Vulnerabilities Notification - by shawn_a - 2013-02-28, 04:21:19

View a Printable Version

Users browsing this thread: 3 Guest(s)