V1.7 MODULE TO FIX VULNERABILITY GHSA-6xxj-gcjq-wgf4 (AFFECTED PS 1.7.5.0 -> 1.7.8.1)

[d-shilko]

I'm pretty sure there is no patch at all..
Stronzodicane made this patch by himself (I'll not spend nullcash to see what it contains) I guess it's the 2 or 3 modified php files you need to replace in the dedicated directories.

It is the simply patch. I UNDERSTAND HOW IT WORK. I WROTE THE SIMILAR PATCHES MANY TIMES. I try to find community where that the guys always has fresh information regarding PS

 

[af984hefaofaeg]

Just some PHP scripts from github... Just update to the latest presta!!!

 

[d-shilko]

Just some PHP scripts from github... Just update to the latest presta!!!

Just can you provide link of this patch? Regarding "just update" I see you not developer

 

[djpremiere]

I'm pretty sure there is no patch at all..
Stronzodicane made this patch by himself (I'll not spend nullcash to see what it contains) I guess it's the 2 or 3 modified php files you need to replace in the dedicated directories.

 

[d-shilko]

I'm pretty sure there is no patch at all..
Stronzodicane made this patch by himself (I'll not spend nullcash to see what it contains) I guess it's the 2 or 3 modified php files you need to replace in the dedicated directories.

I have downloaded this patch, research and used on all my sites. I very good understand how it work. I guesses Stronzodicane not developed this patch because it has highly qualified(level) code.

 

[amir_561]

thanx

 

[lolaco]

thanks

 

[xiketo]

Thank you!

Post automatically merged: Jan 2, 2022

Thank you!

 

[maveryck]

omg

 

[chibi]

I'm pretty sure there is no patch at all..
Stronzodicane made this patch by himself (I'll not spend nullcash to see what it contains) I guess it's the 2 or 3 modified php files you need to replace in the dedicated directories.

Index.php :

<?php
/**
* Modulo CVE-2021-43789
*
* @author       Giuseppe Tripiciano <admin@areaunix.org>
* @copyright    Copyright (c) 2021 Giuseppe Tripiciano
* @license      You cannot redistribute or resell this code.
*/

header("Expires: Mon, 26 Jul 1997 05:00:00 GMT");
header("Last-Modified: " . gmdate("D, d M Y H:i:s") . " GMT");

header("Cache-Control: no-store, no-cache, must-revalidate");
header("Cache-Control: post-check=0, pre-check=0", false);
header("Pragma: no-cache");

header("Location: ../");
exit;

fixcve202143789.php :

Forum don't allow more than 5000 characters : LINK






It's a real module.

 

[stronzodicane]

I'm pretty sure there is no patch at all..
Stronzodicane made this patch by himself (I'll not spend nullcash to see what it contains) I guess it's the 2 or 3 modified php files you need to replace in the dedicated directories.

that's is ! A simple module to close this vulnerability... I realized the code using the detail for this specific fix (github)

 

[ybew]

Thanks

 

[x50902Ty]

thank you

 

[Jan Doe]

Thank you

 

[ToxiiK]

nice

 

[chibi]

that's is ! A simple module to close this vulnerability... I realized the code using the detail for this specific fix (github)

Thank you again ;-)

 

[Sillumin]

Thank you!

 

[juancommm]

thx

 

[personalkiwi]

Funziona davvero, allora?

Post automatically merged: Jan 5, 2022

Provato e con store commander non segnala problemi di vulnerabilità

 

[dreamfast]

thank you for sharing