IlluminaCMS Edit (Used on xenhotel.co)

It's easy to patch exploits,
unless you're a real noob.

When i register my user does not show on the users table.

Not trying to start an argument, but there is an XSS motto exploit in which I know of. I don't know how to patch it, but I know it works. Basically, I can put in a alert script in my motto and it'll pop up on the community page.

Quote:

---

Originally Posted by Bow

Not trying to start an argument, but there is an XSS motto exploit in which I know of. I don't know how to patch it, but I know it works. Basically, I can put in a alert script in my motto and it'll pop up on the community page.

---

htmlentities()

Quote:

---

Originally Posted by eckostylez

... Not sure if serious...

The XSS exploits are still contained in this CMS. It was demonstrated being used in the original topic. On the CMS author's site no less.

---

They are indeed still there. Exactly why i've actually sat down and learned proper security techniques to implement in my new CMS. Illumina is poorly coded, though i'd still recommend it over other systems as long as the problems are patched.

Quote:

---

Originally Posted by Jonteh

htmlentities()



They are indeed still there. Exactly why i've actually sat down and learned proper security techniques to implement in my new CMS. Illumina is poorly coded, though i'd still recommend it over other systems as long as the problems are patched.

---

Believe that when I see it :laugh:

Ill use this, but only local development purposes. (In-game)