Advanced search  

News:

cpg1.5.48 Security release - upgrade mandatory!
The Coppermine development team is releasing a security update for Coppermine in order to counter a recently discovered vulnerability. It is important that all users who run version cpg1.5.46 or older update to this latest version as soon as possible.
[more]

 Search results for: rar

Pages: [1] 2 3 4 5 ... 7
1
cpg1.3.x Support / HOTFIX for Apache's RAR/PHP Vulnerability - IMPORTANT!
« by Paver on June 11, 2006, 07:00:56 am »

......  breach, the current one being the "Apache RAR Exploit". Your Coppermine gallery and any other  ............  about it here: Coppermine-driven galleries hit by RAR exploit  Coppermine 1.4.6 was the first release  ............  release CPG1.4.6 protects against Apache's .rar vulnerability  You are strongly recommended to  ............  of your gallery to the currently popular "RAR Exploit", which allows someone to inject code  ......
2
cpg1.4 miscellaneous / Re: xxx.php.rar exploit question
« by Joachim Müller on October 01, 2006, 03:06:11 pm »

......  on the existing threads that deal with the rar exploit and the fixes, the fix we created should  ......
3
cpg1.4 miscellaneous / Re: *.php.rar = big problem
« by Joachim Müller on August 01, 2006, 10:41:06 pm »

......  any files matching the pattern xxx.php or xxx.php.rar inside the albums folder (there might be some  ......
4
cpg1.4 miscellaneous / Re: How bad is the file ly_php.rar
« by Joachim Müller on September 20, 2007, 09:36:03 am »

......  of coppermine. The original file was named ly.php.rar (notice the dot), which would have posed a risk  ......

......  los rar....  si tienes el winrar, este compresor/ ............ , además de la extensión .rar, reconoce más, como .zip .arj .cab .gzip ... y a  ............ , solo veo "Archivo WinR..." (de Archivo WinRAR), pero si la amplio un poco, en los zip, me pone " ............  WinRAR ZIP".  Desconozco si puede venir por ahí el mal  ............ ón, es que desactives la opción del windows "mostrar extensiones para archivos conocidos", y así verás  ......
6
cpg1.4 upload / Re: 1.4.5, still hit by rar exploit
« by Joachim Müller on May 09, 2006, 08:00:25 am »

......  in a way that doesn't allow PHP files to pose as rar files - files having the rar extension are not  ............  does not affect the capability of users to upload rar files, so there's little use in changing it from " ............  release that patches security issues is not the rar vulnerability, but the imei bug that allows a  ......
7
cpg1.4 miscellaneous / Re: Malicious RAR
« by Joachim Müller on July 19, 2007, 08:11:48 am »

......  rather, a misdocumented feature). The so-called "rar"-explot has been taken care of some time ago.  ............  in the thread "Coppermine-driven galleries hit by RAR exploit" and "Maintenance release CPG1.4.6  ............  against Apache's .rar vulnerability" ......
8
cpg1.4 miscellaneous / Re: How do I change the display of zip or rar?
« by cpmbr on October 12, 2009, 06:31:13 pm »

...... .  I wonder if there is any way to send a zip or rar file with the image file (jpg / gif / png) to  ......

......  March 12, 2006, 09:26:28 pm  If you don't need .rar files uploaded then disallow them in config or  ......
10
cpg1.3 Permissions & Access Rights / Cannot delete .rar and .zip files!
« by jodest3 on July 07, 2006, 10:34:53 pm »
11
cpg1.4 permissions / Re: ly.php.rar fkn HACKED!!!
« by Joachim Müller on May 15, 2006, 02:40:58 pm »

......  here: Coppermine-driven galleries hit by RAR exploit    You're just doing what you're not  ......

......  are affected: Quote  cpg1.5.x_theme_dm_anabolica.rar cpg1.5.x_theme_dm_anime.rar cpg1.5. ............ .rar cpg1.5.x_theme_dm_blue_tatoo.rar cpg1.5. ............ .rar cpg1.5.x_theme_dm_coppersheet.rar cpg1.5. ............ .rar cpg1.5.x_theme_dm_finalfantasy.rar cpg1.5. ............ .rar cpg1.5.x_theme_dm_graphix.rar cpg1.5. ............ .rar cpg1.5.x_theme_dm_halloween.rar cpg1.5. ............ .rar cpg1.5.x_theme_dm_lovewave.rar cpg1.5. ............ .rar   ......

......  (images, sons, txt, archives ZIP ou TAR.GZ RAR etc) Les Galeries qui ne possèdent qu'un seul  ......
14
cpg1.4 miscellaneous / Re: Need to delete files placed in by a hacker
« by kegobeer on May 16, 2006, 09:04:17 pm »

...... , tell your host to fix their server - rar files should not be parsed as php files. Second,  ............  rar files from being uploaded. You can do this in  ......

......  faut-il être sot pour cliquer sur un fichier *.RAR d'origine inconnue !   ......
16
cpg1.3 Upload / Re: problems adding mp3,avi,midi... to album
« by Joachim Müller on May 23, 2005, 09:54:08 am »

...... /ra/rm/tiff/tif/doc/txt/rtf/pdf/xls/pps/ppt/zip/rar/gz/mdb", as most of those extensions are not  ............  that actually can be processed by the image library you use (GD or ImageMagick). Try setting " ......

......  this search:  Search Link  Those results reveal rar file uploads associated with that IP.  I'm  ......
18
cpg1.3 Upload / Custom uploader
« by MDxRacing on November 10, 2005, 08:07:14 pm »

......  Your Upload You Only Had A Pic As Your zip/rar File To Click On To Download . Not 2 Pics Of Your  ............ /rar And The Pic You Uploaded With It.  Now Im Running  ............ /upload.php\">Click Here And Go Upload Your zip/rar file</a>";  And This 10001   echo "<meta  ............ /upload.php\">Click Here And Go Upload Your zip/rar file</a>";  exit();  } ......

......  version, it's also about protecting against the .rar vulnerability. 2. The "hotfix" doesn't apply to 1. ......
20
Announcements / Re: Coppermine-driven galleries hit by RAR exploit
« by AndrewRH on December 01, 2006, 11:47:21 am »

...... 're correct in stating that files with the .php.rar extension are >parsed as PHP files, and that your  ......

......  a European country uploaded a file called “ly.php.rar” and "smekerie.php.rar". They each joined as a  ......
22
cpg1.4 upload / Uploading of rar files
« by Purrsia on May 04, 2006, 05:15:10 pm »

......  have had a few users uploading rar files to one of my galleries. Not sure if they're  ......
23
General discussion (no support!) / Xendar.zip and a.php.rar by broscuta
« by bluesatsuma on August 11, 2006, 04:20:10 pm »

......  the xender.zip but can seem delete the a.php.rar file. I also did a serch for xender.zip on google  ......
24
Feature requests / [Invalid]: Auto Unzip Plugin
« by YoungMike on May 03, 2010, 07:11:32 pm »

......  a plugin that when the admin or user upload a zip/rar/gz file full of images it extracts it  ......
25
cpg1.4 upload / Re: sanyo_php.rar - Coppermine Exploit ??????
« by derperle on October 29, 2006, 10:51:45 pm »

......  File in my Gallery. Now i forbid tho upload of rar files But is there any danger for my gallery??? ......
26
cpg1.4 miscellaneous / Plugin for RAR or Zip Download
« by netfloh on January 03, 2007, 02:35:33 pm »

......  the users can download all fotos of an album as RAR or ZIP?  thx for answers  flo  ps i wish you a  ......

......  plugin to use cpg on that way? I'd like to upload rar or zip files instead of multimedia ones, so the  ......
28
cpg1.4 upload / Re: Vulnerability? Had shell uploaded through upload.php
« by SickFinga on June 17, 2006, 11:59:59 am »

......  I just tried to rename the shell to is.php.rar and upload it. Coppermine changed the file name  ............  is_php.rar  So I guess fix does works.  Sorry for the false  ......
29
cpg1.4 upgrading / Re: Hacker on my Gallery part 2
« by LACA Rio on July 22, 2006, 06:08:17 pm »

......  were right. I uploaded a test "php.rar" and after run it, I can read "Oops, my webserver  ......
30
cpg1.4 miscellaneous / Re: webadmin.php upload hack
« by Tranz on June 26, 2006, 05:26:57 pm »

......  they would be able to hack uploading a file in a .rar why dont you download the .rar nd paste the code  ......
Pages: [1] 2 3 4 5 ... 7

 

Page created in 0.18 seconds with 31 queries.