Enano CMS (1.1.x): themes/oxygen/simple-footer.tpl@a9a3789ce02d

Mercurial Mercurial > repos > enano-1.1 / file revision

themes/oxygen/simple-footer.tpl

author	Dan
	Sat, 19 Jan 2008 00:47:52 -0500
changeset 447	a9a3789ce02d
parent 276	acfdccf7a2bf
child 1227	bdac73ed481e
permissions	-rw-r--r--

Not sure if $taboo was getting sanitized or not. Possibly an SQL injection vulnerability that allows maliciously crafted group names to inject SQL at a later date when the group CP is loaded. Unconfirmed, theoretical fix.



            </div>
          </td>
          <td id="mdg-mr"></td>
        </tr>
        <tr>
          <td id="mdg-btl"></td>
          <td>
            <div id="credits">
              {COPYRIGHT}
            </div>
          </td>
          <td id="mdg-btr"></td>
        </tr>
        <tr>
          <td id="mdg-btcl"></td>
          <td id="mdg-btm"></td>
          <td id="mdg-btcr"></td>
        </tr>
      </table>
    </td>
    <td style="width: 10%;"></td>
    </tr>
    </table>
  </body>
</html>

Enano CMS (1.1.x)

RSS Atom