XOOPS 
Forum
Forum Index General Forums Community Support Modules Support Themes Support Development International Support Module Hack Reviews Theme Designer Talk


« 1 ... 29304 29305 29306 (29307) 29308 29309 29310 ... 29425 »


293061
Stewdio
Re: Possible PHPMyAdmin risk

  • 2003/5/28 14:09

  • Stewdio

  • Community Support Member

  • Posts: 1560

  • Since: 2003/5/7 1


*punt to the top*

I've never used the module, or any module that access's the DB in this manner so I can't offer any feedback, but I'm curious if anyone else has noticed this.

Looks pretty scary to me, glad you dropped the mod right away.
Topic | Forum


293062
supernix
Possible PHPMyAdmin risk

  • 2003/5/28 9:41

  • supernix

  • Not too shy to talk

  • Posts: 151

  • Since: 2003/3/13


This morning going over the logs I found this
Host: 203.217.41.124 Url: /modules/phpmyadmin/admin/sql.php?lang=en-iso-8859-1&server=1&db=supernix_xoops&table=xoops_config&goto=tbl_properties.php&back=tbl_properties.php&sql_query=SELECT+%2A+FROM+%60xoops_config%60&pos=0&PHPSESSID=aed13a2e3e593f9d7c893a483bf3481e Http Code : 200
Date: May 28 03:15:17 Http Version: HTTP/1.1 Size in Bytes: 244435
Referer: http://www.dnspad.com/modules/phpmyadmin/admin/sql.php?lang=en-iso-8859-1&server=1&db=supernix_xoops&table=xoops_config&goto=tbl_properties_structure.php&back=tbl_properties_structure.php&sql_query=SELECT+%2A+FROM+%60xoops_config%60&pos=0&PHPSESSID=aed13a2e3e593f9d7c893a483bf3481e Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; YComp 5.0.0.0; .NET CLR 1.0.3705)

and when I went to that URL it showed the PHPMyadmin and the table with options to manipulate the tables and such.


And shortly before that I found this :
Host: 210.50.219.22 Url: /modules/phpmyadmin/admin/index.php Http Code : 200
Date: May 28 03:13:41 Http Version: HTTP/1.1 Size in Bytes: 642
Referer: - Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1)

So I dont know if it is a problem with XOOPS or the PHPMyadmin module or Xoops

I have taken the PHPMyadmin module completely off the server to avoid any further cause for concern. But it sorta looks like to me that someone found a way to use the PHPMyadmin module to get access to the database.

Steve,
http://www.dnspad.com/
Topic | Forum


293063
blueangel
Re: MassMail to members [fixed]

  • 2003/5/28 6:56

  • blueangel

  • Module Developer

  • Posts: 132

  • Since: 2002/2/20


so I think that there are more problems related to the Mail User function..

malexandria I think that our problem is related also to the fact that we cannot edit the group of registered user and we cannot modify users

actually I have still no ideas on what happen
Topic | Forum


293064
Semzer
Banner click go's back to strange login screen

  • 2003/5/27 20:55

  • Semzer

  • Just popping in

  • Posts: 1

  • Since: 2003/5/27


Can someone help me out...??

I have created a new banner account in my XOOPS admin and i created 5 banners (http://banner_url) to start the bannering, But everytime i click one of the banners it just:

- opens a new window (good)
- shows the click_out URL (good)
- never shows the real website (?? oo Oooww)
- but changes back to an login screen of my own website. (oeps)

can someone please help me to correct this problem.

Best Regards,
Semzer.
Topic | Forum


293065
malexandria
Re: MassMail to members [fixed]

Quote:
I had the same problem, I get a blank page when a try to send an email to registered users; but by me it works with the group of administrators. Herko, have you the same behaviour?


that's what happens to me. I'm able to send to groups that have really small numbers, like my webmaster and writers group, but I can't send to the registered users group.
Topic | Forum


293066
Herko
Re: MassMail to members [fixed]

  • 2003/5/27 19:33

  • Herko

  • XOOPS is my life!

  • Posts: 4238

  • Since: 2002/2/4 1


Quote:

blueangel wrote:
I had the same problem, I get a blank page when a try to send an email to registered users; but by me it works with the group of administrators. Herko, have you the same behaviour?


Nope, I get a blank page with any group I send to. And the error is the one described in the previous posts, about an illegal call to a member function.

Someone please look at this!!

Herko
Topic | Forum


293067
tanya
Re: "Whats new since last logon" module needed

  • 2003/5/27 16:13

  • tanya

  • Just popping in

  • Posts: 8

  • Since: 2003/4/25


That sounds really usefull. I wouldn't mind having something like that on my site either!
Topic | Forum


293068
dmitry13
"Whats new since last logon" module needed

  • 2003/5/27 15:55

  • dmitry13

  • Just popping in

  • Posts: 1

  • Since: 2003/4/5 8


"Whats new since last logon" module needed
I need a module to show all news, forum posts and comments were changed since last logon to my site. Is there a standart one or should I write it myself?

Thank you.
Topic | Forum


293069
blueangel
Re: MassMail to members [fixed]

  • 2003/5/27 14:28

  • blueangel

  • Module Developer

  • Posts: 132

  • Since: 2002/2/20


I had the same problem, I get a blank page when a try to send an email to registered users; but by me it works with the group of administrators. Herko, have you the same behaviour?
Topic | Forum


293070
malexandria
Re: MassMail to members [fixed]

I've never been able to get the mail function to work. The only way I'm able to send mail to my users is to do the following (tedius) process -

1) Go to your MySQL db
2) Download the Xoops_users file to your HD
3) Convert the file in Excell (using the comma deliminated
option)
4) Copy and paste the email addresses (column) to word
5) Search and Replace all ' with a blank space
6) Save word file
7) Copy all the email addresses to your email program, and then send your members email that way.

It's not a quick way to do it at all. But it's been the only way that I've been able to email my users.
Topic | Forum






[Advanced Search]

Login

Register now!  |  Lost Password?

Search

Advanced Search

Recent Posts

Who's Online

568 user(s) are online (308 user(s) are browsing Support Forums)

Members: 0

Guests: 568

more...

Donat-O-Meter

Stats
Goal: $100.00
Due Date: Jul 31
Gross Amount: $0.00
Net Balance: $0.00
Left to go: $100.00
Make donations with PayPal!

Latest GitHub Commits