PHP Melody Support

PHP Melody Critical Vulnerability Fix (Jan 2017)

Written by

admin

in

PHP Melody releases before January 26th 2017 are vulnerable to SQL injection and should be patched immediately.

In case you cannot use the official package to update your PHP Melody website(s), simply apply the following changes to patch your site against intrusion. Updating is still required but can be safely postponed to a later date.

Open file: /comment.php

Find:

$user_id = $_POST['user_id'];

Replace with:

$user_id = 0;

If you have Mobile Melody installed:

Open file: /mobile/comment.php

Find:

$user_id = $_POST['user_id'];

Replace with:

$user_id = 0;

For PHP Melody versions v2.5 and later, phpmailer can be easily updated as well.

Download phpmailer.zip and replace your existing /include/phpmailer/ folder with the one form the zip archive.

These two code patches should provide adequate security to your PHP Melody website(s). We do however recommend updating to the latest PHP Melody version to fix any pending bugs.

To download the complete update packages visit your customer account with us. To patch this critical vulnerability, you need to run at least PHP Melody v2.7.1.

Comments

6 responses to “PHP Melody Critical Vulnerability Fix (Jan 2017)”

  1. Avatar
    Anonymous

    I don’t think the title of your article matches the content lol. Just kidding, mainly because I had some doubts after reading the article.

    Reply
  2. ein binance Konto erstellen Avatar
    ein binance Konto erstellen

    Thank you for your sharing. I am worried that I lack creative ideas. It is your article that makes me full of hope. Thank you. But, I have a question, can you help me?

    Reply
  3. създаване на профил в binance Avatar
    създаване на профил в binance

    I don’t think the title of your article matches the content lol. Just kidding, mainly because I had some doubts after reading the article. https://www.binance.info/uk-UA/register?ref=W0BCQMF1

    Reply
  4. binance account Avatar
    binance account

    Thank you for your sharing. I am worried that I lack creative ideas. It is your article that makes me full of hope. Thank you. But, I have a question, can you help me? https://www.binance.info/register?ref=P9L9FQKY

    Reply
  5. Avatar
    Anonymous

    Your article helped me a lot, is there any more related content? Thanks!

    Reply
  6. odprite racun na binance Avatar
    odprite racun na binance

    Thank you for your sharing. I am worried that I lack creative ideas. It is your article that makes me full of hope. Thank you. But, I have a question, can you help me? https://www.binance.com/join?ref=P9L9FQKY

    Reply

Leave a Reply to odprite racun na binance Cancel reply

Your email address will not be published. Required fields are marked *

More posts