(UTC)
 Choose Language:
  BoardMod MirrorYaBB & BoardModNews › Security Bulletin
Previous Topic | Next Topic
Page Index Toggle Pages: 1 Send TopicPrint
Normal Topic Security Bulletin (Read 5344 times)
Administrator
Forum Administrator
*****
Offline


Yummm

Posts: 7
Location: Modders Rile
Joined: Oct 7th, 2014
Gender: Male
Security Bulletin
Feb 27th, 2005 at 9:39pm
Print Post  
Since a lot of users have those two mods installed I'll put this on the front page:

There is a bug in 'Add More Membergroups 1.5' and 'Global Moderators 2.2' mods that allows global moderators read passwords, change valid profile information and makes it possible to gain administrator access.

A fix for the 'Add More Membergroups' mod is available here, and for the 'Global Moderators' mod here.

All users who have one of the two mods installed should install this security fix immediatly. Note that this problem only affects these two mods, this is not a YaBB security bug.

At this point I'd like to thank meeresstille for bringing my attention to this.
  
The Administrator.
Back to top
WWW  
IP Logged
 
BRO_co03
Full Member
***
Offline


Courage. Wisdom. Power.

Posts: 216
Location: Lone Star State
Joined: May 19th, 2004
Gender: Male
Re: Security Bulletin
Reply #1 - Feb 28th, 2005 at 4:39am
Print Post  
Wow. Small mod, yet very important.
  
http://broco03.no-ip.com/images/Signature.pl
HTML! Now Available For Your YaBB 1 Board! Click Here!
Sub-Boards for YaBB 2.1. Click Here!
Back to top
WWW  
IP Logged
 
Jungle Jim
God Member
*****
Offline



Posts: 1015
Location: The Fridge
Joined: Apr 7th, 2003
Gender: Male
Re: Security Bulletin
Reply #2 - Mar 20th, 2005 at 7:29pm
Print Post  
How do you know what version youve got installed ?  I put mine on over a year ago....
  
Back to top
 
IP Logged
 
Administrator
Forum Administrator
*****
Offline


Yummm

Posts: 7
Location: Modders Rile
Joined: Oct 7th, 2014
Gender: Male
Re: Security Bulletin
Reply #3 - Mar 20th, 2005 at 11:04pm
Print Post  
If there is no entry about the mod in your boardmod log file then there is no easy way. But you could try to install one of the fixes anyway.
  
The Administrator.
Back to top
WWW  
IP Logged
 
Page Index Toggle Pages: 1
Send TopicPrint
Previous Topic | Next Topic
 
  « Board Index ‹ Board Top  

BoardMod Mirror » Powered by YaBB 2.6.12!
YaBB Forum Software © 2000-2024. All Rights Reserved.

Valid RSS Valid XHTML Valid CSS Powered by Perl Source Forge