Name	Version	req. YaBB	Upload Date	Author	Download	Clicks
Security Patch 5/24/07	1.0	2.1	13.06.07	Boris Tjuvanov (MF-B), Jeffrey Man (Jet Li)	Security_Patch_05[...]	1496
	Description: This security mod will fix your forum so it cannot be hacked by a current or registering forum member. The vulnerability allows members to enter specific text into some profile form fields to gain administrator access to the forum. Administrator rights grants the member access to the forum controls. After installing this mod, the user will not be able to use this vulnerability any more. It converts these form fields to their HTML equivalent and removes line breaks, rather than writing them directly to the profile data (.vars) file. Installation: 1) Modify YaBB files using BoardMod or manually. 2) Load modified files to your server in ASCII mode. Sources/Profile.pl (ASCII) Sources/Register.pl (ASCII)
Global Moderator Security Fix	1.0	1 Gold - Service Pack 1.3	27.02.05	Michael Prager	global_mods_22_se[...]	2310
	Description: There is a bug in the mod global_mods 2.2 that allows global moderators to read all passwords and even allow them to change restricted profile data like email or password. It's also possible for them to give any registred member administrator access. This fix will take care of all these problems.
Add More Membergroups Security Fix	1.0	1 Gold - Service Pack 1.3	27.02.05	Michael Prager	add_more_membergr[...]	2131
	Description: There is a bug in the mod 'Add More Membergroups 1.5' that allows global moderators to read all passwords and even allow them to change restricted profile data like email or password. It's also possible for them to give any registred member administrator access. This fix will take care of all these problems.
Security Fix from November 11, 2002	2.0	1 Gold - Service Pack 1.1	02.01.03	The Yabb Team	readformsecurityf[...]	3360
	Description: This mod is the same as the one posted in YaBB Forum News. There is no need to install it twice :) Important: Use this mod to remove a newly found vulnerability that could allow malicious users to execute any function in YaBB, including one that would modify their profile to become an Administrator! This mod makes sure that no variables from the url query string go into the $FORM array of variables passed in from the actual form. It also, adds a new "Find Forum Administrators" function to your Admin center. Please use this function to check your site only has its valid administrators. Instructions: 1. Apply the mod. 2. Use the Find Forum Administrators function in your admin center to find any unwanted admins, and then delete them. Version History: v2. Took out need for findadmins.pl and built in "Find Forum Admins" dunction into yabb itself v1. Initial Release Thanks to all of us who worked so hard on fixing this flaw.
HideEMailForGuest	1.0	1 Gold - Service Pack 1.1	01.12.02	Pyrrhon	HideEmailsForGues[...]	2806
	Description: This tiny mod hides eMails for Guest (and robots) in Profile.pl
Member list and registration security?	1.0	1 Gold - Service Pack 1.1	01.12.02	Christer	Security_mod.mod	2813
	Description: This mod makes your YaBB more secure by: -Rebuilding memberlist if it ever should be zeroed out(sometimes YaBB does this when it receives a lot of signups) -Making sure that two registrations have to be delayed by x seconds where x is admin-settable
Security Fix SP1	1.4	1 Gold - Service Pack 1	15.01.02	[CV]XXL	security_fix_sp.mod	14720
	Description: This is a very important security fix for YaBB 1 Gold - Service Pack 1. Note that also all lower yabb versions are affected too! v1.1: printpage.pl fixed too v1.2: fixed checking for http:// v1.3: fixed image display v1.4: fixed images with custom size This mod does not apply to SP1.1.
Security Fix GR	1.4	1 Gold - Release	15.01.02	[CV]XXL	security_fix_gr.mod	4901
	Description: This is a very important security fix for YaBB 1 Gold - Release. Note that also all lower yabb versions are affected too! v1.1: printpage.pl fixed too v1.2: fixed checking for http:// v1.3: fixed image display v1.4: fixed images with custom size
ManageBoards Security FIX	1.0	1 Gold - Release	08.09.01	Godai, Max	manage_boards_sec[...]	3888
	Description: This MOD fixes the security bug in MangaBeards.pl that cause the world to view your Manage Boards screen. tnx to Max for the tip Installation instructions: 1 - apply the mod with boardmod or manually
Password Security Updater	1.0	1 Gold - Release	03.06.01	Matthew C. Veno	password_security[...]	2877
	Description: If you have installed the Password Security MOD version 1.0.1 or less please download and apply this fix. Updater - Bug Fix for password_security.mod versions 1.0.1 or less Fixed bug where when Admin modifies users' profile the users' password and secret answer were changed and unusable. For detailed installation information please visit http://www.thewebworks.com/yabbmod.htm
Security Mod	1.0	1 Final	07.05.01	[CV]XXL	security.mod	3984
	Description: THIS MOD IS ABSOLUTLY NECESSARY TO MAKE YOUR BOARD SAVE! Without his mod, everyone can change everyone's post! This fix also prohibits guests to use names from registred members.
Privat Board Security Fix (English)	1.2	1 Final	07.05.01	[CV]XXL	privat_board_secu[...]	2737
	Description: only for ENGLISH version! This hack adds security test to complete security of privat boards. You should also install better_recent.mod and better_search.mod to make your board really save. version 1.2 - instant messages repaired (fix by Ze0) version 1.1 - one more security lag fixed
Privat Board Security Fix (German)	1.2	1 Final	07.05.01	[CV]XXL	privat_board_secu[...]	2314
	Description: only for GERMAN version! This hack adds security test to complete security of privat boards. You should also install better_recent.mod and better_search.mod to make your board really save. version 1.2 - instant messages repaired (fix by Ze0) version 1.1 - one more security lag fixed

© 2000-2012 by - All rights reserved.