The damage this sort of attack can do is drastically mitigated by IP.Board's use of HTTP-only cookies and other security measures.
As part of our continued dedication to security enhancement, we are releasing a simple patch for IP.Board 3.1.2 to address this issue. If you are running IP.Board versions less than 3.1.2 simply upgrade your software version.
Simply upload the attached file to: admin/sources/classes/bbcode/custom/defaults.php
The main download zip has been updated at the time of this post.
IP.Board 3.1.x Security Patch Released
No replies to this topic
0 user(s) are reading this topic
0 members, 0 guests, 0 anonymous users