You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
I kinda fucked up with implementing a PHP 0auth, since this exploit was discovered, then again some people are not surprised probably because they know that PHP is quite vulnerable, essentially just HTML 2.0 I suppose lol. Even if it doesn't affect it directly, we should probably be careful with this one on our system in the future.
According to JASHiN, the PHP implementation wouldn't be affected as long as our backend's masked enough. I'm hopeful that our security's beefed up to this point.
The text was updated successfully, but these errors were encountered:
I kinda fucked up with implementing a PHP 0auth, since this exploit was discovered, then again some people are not surprised probably because they know that PHP is quite vulnerable, essentially just HTML 2.0 I suppose lol. Even if it doesn't affect it directly, we should probably be careful with this one on our system in the future.
Sources:
https://www.youtube.com/watch?v=u8jLUjpCWrs
https://nvd.nist.gov/vuln/detail/CVE-2024-2961
BookStackApp/BookStack#4971
According to JASHiN, the PHP implementation wouldn't be affected as long as our backend's masked enough. I'm hopeful that our security's beefed up to this point.
The text was updated successfully, but these errors were encountered: