On Mon, Dec 8, 2008 at 12:01 PM, Ryan S <genphp@xxxxxxxxx> wrote:
>
> We cannot really afford a security specialist so would appreciate it if you could hit our site with whatever you want to (just dont take us offline with something like a DDOS please) and tell us if you find any problems.
Hey, Ryan;
Here are a few issues:
* When subscribing to the newsletter:
Error: Email is invalid, please check it and try again.
Fatal error: Cannot break/continue 1 level in
/path/to/your/site/hidden/funnies_via_email.php on line 20
* Your output isn't cleaned up when coming from the database. You
need to put a few stripslashes() instances in there.
* http://www.ezee.se/funnies/funnies_recommend.php, at least when
submitting a blank report, has the following error:
Warning: Smarty error: unable to read resource: ".tpl" in
/path/to/your/site/hidden/Smarty_2_6_9/Smarty.class.php on line 1092
* The following places are web-directory accessible (I only
checked a few, but watch them - the images directory could easily be
spidered and all content stolen):
http://www.ezee.se/includes/Smarty_2_6_9/
http://www.ezee.se/includes/
http://www.ezee.se/funnies/final_images_uploaded_folder/
Those are only a few things I noticed in the few minutes I spent
going through. I tried some simple SQL injection stuff, but it looks
like you're properly sanitizing. However, typical web developer:
http://www.ezee.se/funnies/phpinfo.php
Makes it even easier to figure out what's what on there. While
your upload_max_filesize and post_max_size are good to keep you from
having disk space run out from spoofed uploads, they will also limit
you on legitimate uploads. If you want someone to upload a sound or
video file, it may exceed the limits you have on there.
--
</Daniel P. Brown>
http://www.parasane.net/
daniel.brown@xxxxxxxxxxxx || danbrown@xxxxxxx
50% Off Hosting! http://www.pilotpig.net/specials.php
--
PHP General Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php
