Register Log In

UBB.threads PHP Forum Software Community Forums General Off Topic OpenX Exploit

Print Thread

Hop To

OpenX Exploit #239527 09/16/2010 8:50 AM
Joined: Jun 2006 Posts: 9,242 Likes: 1 Aberdeen, WA R Rick Former Developer
Rick Former Developer R Joined: Jun 2006 Posts: 9,242 Likes: 1 Aberdeen, WA	If you're running the openX ad server and you're not running the latest version, I'd recommend doing an upgrade asap. There is a pretty bad exploit available and it's already hitting some big sites. The exploit is done via the Open Flash Chart 2 module. There is no check in place to make sure users should be uploading the files in that directory. If you can't upgrade at this time then what you'll want to do is delete admin/plugins/videoReport/lib/ofc2/ofc_upload_image.php if you don't use the module. Most people don't use the module, and even if you do, I'd delete it anyway until you can upgrade. There are a variety of ways to exploit this, but one thing you can check is look inside your admin/plugins/videoReport/lib/tmp-upload-images directory. If you see some sort of .php script in there, that's a bad sign.

Link Copied to Clipboard

Comment Guidelines: Do post respectful and insightful comments. Don't flame, hate, spam.

Bots
by Outdoorking - 04/13/2024 5:08 PM

Can you add html to language files?
by Baldeagle - 04/07/2024 2:41 PM

Do I need to rebuild my database?
by Baldeagle - 04/07/2024 2:58 AM

This is not a bug, but a suggestion
by Baldeagle - 04/05/2024 11:25 PM

Is UBB.threads still going?
by Aaron101 - 04/01/2022 8:18 AM

Who's Online Now

0 members (), 459 guests, and 146 robots.

Key: Admin, Global Mod, Mod

Random Gallery Image

Latest Gallery Images

Los Angeles

Los Angeles
by isaac, August 6

3D Creations

3D Creations
by JAISP, December 30

Artistic structures

Artistic structures
by isaac, August 29

Stones

Stones
by isaac, August 19

Powered by UBB.threads™ PHP Forum Software 8.0.0
(Preview build 20230217)