Support Forums

Security Issue with included Template switcher

This is a discussion on Security Issue with included Template switcher within the News & Announcements forums, part of the 68 Classifieds News category; This is an update to let everyone know an xss issue has been reported with the included template switcher smarty ...


Go Back   68 Classifieds Forums > 68 Classifieds News > News & Announcements
Reload this Page Security Issue with included Template switcher
Register FAQ Calendar Search Today's Posts Mark Forums Read

This topic is closed.

This topic is closed to new replies.
 
Thread Tools Display Modes
Old 07-27-2009, 11:17 AM   #1
68 Classifieds Staff
 
Eric Barnes's Avatar
 
Join Date: Mar 2006
Location: Belmont, NC
Posts: 5,489
Rep Power: 133
Eric Barnes is just really nice Eric Barnes is just really nice
Default Security Issue with included Template switcher
This is an update to let everyone know an xss issue has been reported with the included template switcher smarty plugin. (This is not the template switcher from TemplateCodes).

I have attached a fix to this thread but this feature is not one documented and I do not believe many people use this plugin. Only people using the plugin are affected.

You can see this plugin in action on our demo: 68 Classifieds

To fix this replace the file plugins/function.list_templates.php with the one attached.
Attached Files
File Type: zip function.list_templates.php.zip (1.2 KB, 11 views)
__________________
Eric Barnes
68 Classifieds Developer
 Customer Area | Issue Tracker | Documentation | 68C Mods | 68 @ Twitter | My Modules
Last edited by Eric Barnes; 07-27-2009 at 11:31 AM.
Eric Barnes is offline  
Closed Thread

« v4.1.4 Is Now Released | v4.1.5 Is Now Released »
Thread Tools
Display Modes
Linear Mode Linear Mode


Similar Threads
Thread Thread Starter Forum Replies Last Post
Template Switcher seymourjames Modification Release 4 08-04-2009 10:41 AM
Included php in tpl damiun Technical Support 4 06-13-2009 05:16 AM
Width issue in Purple Template MrGForce Technical Support 4 06-08-2009 10:26 AM
Included contactform in tab damiun Templates, HTML, CSS, and Design Help 3 05-27-2009 07:47 PM
vertical alignment issue with default template tom11011 Technical Support 3 12-04-2008 09:38 AM


All times are GMT -4. The time now is 03:31 AM.

68 Classifieds - Archive - Top

Powered by vBulletin® Version 3.8.1
Copyright ©2000 - 2011, Jelsoft Enterprises Ltd.
Search Engine Friendly URLs by vBSEO 3.2.0

1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22