Topic: PunBB 1.2.9
Just a quick note this time. This release is a very small update that fixes an SQL injection vulnerability in search.php that is exploitable in PHP environments with register_globals enabled. Beginning with 1.2.9, PunBB also implements a method for reversing the effects of register_globals (thanks Stefan Esser!). What this means is that register_globals should no longer be a problem. If a variable is instantiated as a result of register_globals being enabled, it will be unset by PunBB. Yay! Something to note about this new mechanism is that if you have integrated your PunBB install with other code, for example by including PHP code in your templates, that code must be able to function properly with register_globals disabled. If it does not, you will have to temporarily disable the call to unregister_globals() in include/common.php until you can update your code.
Thanks a lot to "Devil_box of KAPDA" for posting an advisory on the SQL injection without even notifying me of it. Much appreciated! Proper thanks go out to Paolo Gabrielli for telling me about the advisory. Someone else posted a topic in the forums about the advisory, but I deleted it. Please e-mail security related information to security @ this domain.