Problem with form post hijack?

Marchel · Post by **Marchel** » Tue 27. Sep 2005, 15:42

Hi all,

I have a question regarding contact forms.

Currently there is a form post hijack.

Info can be found at http://www.anders.com/projects/sysadmin ... Hijacking/

I was wondering if phpwcms is vulnerable to this and if so, what we can do to fix it. Anyone has a clue?

I am currently coming up with a solution for other forms we host using php, by stripping out the \r and \n of the form headers.

Cheers,
Marchel.

usta · Post by **usta** » Wed 28. Sep 2005, 15:53

ssl?: http://www.modssl.org/

Marchel · Post by **Marchel** » Wed 28. Sep 2005, 17:15

Usta,

I don't know what you mean...

usta · Post by **usta** » Thu 29. Sep 2005, 18:33

methought, a ssl-secure login might help...

Post by **Oliver Georgi** » Sun 30. Oct 2005, 11:49

this has nothing to do with bug