Snitz Forums 2000
Snitz Forums 2000
Home | Profile | Register | Active Topics | Members | Search | FAQ
Username:
Password:
Save Password
Forgot your Password?

 All Forums
 Snitz Forums 2000 DEV-Group
 DEV Bug Reports (Open)
 bug + fix, register.asp
 New Topic
 Printer Friendly
Author Previous Topic Topic Next Topic  

ruirib
Snitz Forums Admin

Portugal
26364 Posts

Posted - 30 July 2009 :  18:08:18  Show Profile  Send ruirib a Yahoo! Message  Reply with Quote
Line #399 in register.asp, after applying the 3.4.07 security fix shows as:


strsql = "SELECT SPAM_SERVER FROM " & strTablePrefix  & "SPAM_MAIL WHERE SPAM_SERVER = '" & strMailDomain & "'"
				set rsSpam = my_Conn.Execute (strsql)


This is a bug, as the SPAM_MAIL table is created with the strFilterTablePrefix, and it can cause an error if the value for the two prefixes are different.

The fix is simple:


strsql = "SELECT SPAM_SERVER FROM " & strFilterTablePrefix  & "SPAM_MAIL WHERE SPAM_SERVER = '" & strMailDomain & "'"
				set rsSpam = my_Conn.Execute (strsql)

This will ensure proper access to the table, even when the prefixes values are different.


Snitz 3.4 Readme | Like the support? Support Snitz too

modifichicci
Average Member

Italy
787 Posts

Posted - 31 July 2009 :  14:06:07  Show Profile  Visit modifichicci's Homepage
It needs the same in pop_profile

Ernia e Laparocele
Forum di Ernia e Laparocele
Acces - MySql Migration Tutorial
Adamantine forum
Go to Top of Page

TSAloha
Junior Member

USA
151 Posts

Posted - 31 July 2009 :  19:40:38  Show Profile
pop_profile.asp line 1531? All other instances with the same expressions are commented out.


Go to Top of Page

TSAloha
Junior Member

USA
151 Posts

Posted - 31 July 2009 :  19:43:11  Show Profile
quote:
Originally posted by modifichicci

It needs the same in pop_profile



line 1531? All other (2) instances are commented out in pop_profile.asp


Go to Top of Page

ruirib
Snitz Forums Admin

Portugal
26364 Posts

Posted - 01 August 2009 :  05:35:45  Show Profile  Send ruirib a Yahoo! Message
A new security fix was posted about this.


Snitz 3.4 Readme | Like the support? Support Snitz too
Go to Top of Page
  Previous Topic Topic Next Topic  
 New Topic
 Printer Friendly
Jump To:
Snitz Forums 2000 © 2000-2021 Snitz™ Communications Go To Top Of Page
This page was generated in 0.14 seconds. Powered By: Snitz Forums 2000 Version 3.4.07