What happened to the Messenger Plus! forums on msghelp.net?
Shoutbox » MsgHelp Archive » General » Forum & Website » Bug in MsgPluslive.net voting

Pages: (3): « First [ 1 ] 2 3 » Last »
Bug in MsgPluslive.net voting
Author: Message:
leachy08
Junior Member
**


Posts: 35
Joined: Jul 2006
O.P. Bug in MsgPluslive.net voting
You have a bug in the voting system...
Email me: leachy_ov_ashton@hotmail.com and will explain in full detail and provide a fix....

http://www.msgpluslive.net/scripts/browse/index.php?act=view&id=80 You may want to delete the last vote on this.
08-08-2006 11:40 AM
Profile E-Mail PM Find Quote Report
Menthix
forum admin
*******

Avatar

Posts: 5537
Reputation: 102
40 / Male / Flag
Joined: Mar 2002
RE: Bug in MsgPluslive.net voting
Just mailed you, thank you in advance :).
Finish the problem
Menthix.net | Contact Me
08-08-2006 11:54 AM
Profile E-Mail PM Web Find Quote Report
leachy08
Junior Member
**


Posts: 35
Joined: Jul 2006
O.P. Happy  RE: Bug in MsgPluslive.net voting
You've got mail
08-08-2006 02:27 PM
Profile E-Mail PM Find Quote Report
Menthix
forum admin
*******

Avatar

Posts: 5537
Reputation: 102
40 / Male / Flag
Joined: Mar 2002
RE: Bug in MsgPluslive.net voting
Thank you. I saw it, will work on a solution tomorrow. Since people already started exploiting it and there is no real security risk I'll rather work on a good fix tomorrow than a quick fix now.
Finish the problem
Menthix.net | Contact Me
08-08-2006 10:27 PM
Profile E-Mail PM Web Find Quote Report
leachy08
Junior Member
**


Posts: 35
Joined: Jul 2006
O.P. RE: Bug in MsgPluslive.net voting
lol i seen a few then at top of highest votes with 362/5 lol
08-09-2006 07:50 AM
Profile E-Mail PM Find Quote Report
John Anderton
Elite Member
*****

Avatar

Posts: 3908
Reputation: 80
37 / Male / Flag
Joined: Nov 2004
Status: Away
RE: Bug in MsgPluslive.net voting
Is it the one where the cookie stops you from revoting so by deleting you can re-vote then i guess anyone could have figured it out. Ip log per vote per script isnt feasible plus even that is easy to get by :)


quote:
Originally posted by leachy08
lol i seen a few then at top of highest votes with 362/5 lol
O.o!
[

KarunAB.com
]

[img]http://gamercards.exophase.com/459422.png[
/img]
08-09-2006 08:33 AM
Profile E-Mail PM Web Find Quote Report
leachy08
Junior Member
**


Posts: 35
Joined: Jul 2006
O.P. RE: Bug in MsgPluslive.net voting
nope its not. There's an exploit in the actual code of the voting. There is no check on the value that is being passed to the script. Therefore the user can send a vote of 1,000,000 instead of 5 if they wanted to.
08-09-2006 08:52 AM
Profile E-Mail PM Find Quote Report
NiteMare
Veteran Member
*****

Avatar
Giga-Byte me

Posts: 2497
Reputation: 37
37 / Male / Flag
Joined: Aug 2003
RE: Bug in MsgPluslive.net voting
ok, so all he has to do is fix the security flaw, then write a mini script to delete any vote thats not between 0 and 5
[Image: sig/]
I'll never forget what she said 6860 days, 23 hours, 58 minutes, 15 seconds ago
Need hosting? Check
out my website. we can help you out :)
08-09-2006 10:57 AM
Profile PM Web Find Quote Report
Menthix
forum admin
*******

Avatar

Posts: 5537
Reputation: 102
40 / Male / Flag
Joined: Mar 2002
RE: Bug in MsgPluslive.net voting
quote:
Originally posted by NiteMare
ok, so all he has to do is fix the security flaw, then write a mini script to delete any vote thats not between 0 and 5
Votes aren't stored that way... There is total rating (which is a sum of all ratings given) and there is a ammount of people who voted. So total rating / ammount of people who voted = rating.
Finish the problem
Menthix.net | Contact Me
08-09-2006 11:10 AM
Profile E-Mail PM Web Find Quote Report
leachy08
Junior Member
**


Posts: 35
Joined: Jul 2006
O.P. RE: Bug in MsgPluslive.net voting
Ahh so you will need to find each vote which is corrupt and clear it. I know id80 need clearing cuz thats mine i tested it on. To fix the flaw is easy though simple if statement...

code:
if ($_POST['vote'] < 0 || $_POST['vote'] > 5) {
     echo "Error with voting";
     die();
}

08-09-2006 12:44 PM
Profile E-Mail PM Find Quote Report
Pages: (3): « First [ 1 ] 2 3 » Last »
« Next Oldest Return to Top Next Newest »


Threaded Mode | Linear Mode
View a Printable Version
Send this Thread to a Friend
Subscribe | Add to Favorites
Rate This Thread:

Forum Jump:

Forum Rules:
You cannot post new threads
You cannot post replies
You cannot post attachments
You can edit your posts
HTML is Off
myCode is On
Smilies are On
[img] Code is On