Topic: hmm guys is this dangerous?

hi to all punbb team and community
im a punbb user and i love and admire it, today when surfing i found an exploit to attack punbb ! this exploit is for
-= PunBB 1.2.4 =-
change_email SQL injection exploit 
any comments please ? have this been reported before ?

Re: hmm guys is this dangerous?

PunBB forum index wrote:

Bug reports
Find a bug? Report it here. Note: Report security related bugs here.

Re: hmm guys is this dangerous?

1.2.4? Don't worry, you should've upgraded beyond that for a long time now tongue

Re: hmm guys is this dangerous?

thank you for your reply smile)

Re: hmm guys is this dangerous?

Yep, it's been taken care of. Just take a look at the diff of email.php here:
http://punbb.org/download/hdiff/hdiff-1 … .2.15.html