Discussion on a BUG of the LB Forum
(Author: mikespook | Published: 2003-12-8 | Views: 406)
Keywords: Vulnerabilities, Forum, LB are now using a lot of people in the Leigh Forum on the Internet. Everyone generally feels that the Leo Forum is more convenient, and there are many plugins. However, both the old players know that the vulnerability of this forum is also very much. I am not interested in CGI and is not interested in the forum privileges. What I want to say here is where a program writer should pay attention to. I don't know if this bug has noticed this bug. Today I am in the S8S8 Forum (using the Leo Forum program) when I write the program. Suddenly think of. If you are a reply, if you are logging in the user, "In the Quick Reply Theme:" There is "Enter the username and password:". Here you understand that you show your username and password. Of course, the password is "****". Is this bug? Now, you open the source file of the page. And search "Name =" password "". You will find a "
