• This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn more.

Tapatalk - Cross-Site Scripting Vulnerability

Brent W

Well-known member
#3
Enable Debug Mode and disable the following by unchecking the box:

Screenshot 2014-05-12 22.26.26.png

This will prevent all calls to the welcome.php file that is vulnerable.

This will allow you to keep using Tapatalk while an official patch is released. The only thing that will not work is the banner system.
 
Last edited:

rainmotorsports

Well-known member
#4
Enable Debug Mode and disable the following by unchecking the box:

View attachment 73584

This will prevent all calls to the welcome.php file that is vulnerable.

This will allow you to keep using Tapatalk while an official patch is released. The only thing that will not work is the banner system.
Is it the smartbanner system that's vulnerable? I manually stripped out all of the php and js in the plugin itself awhile back for unrelated reasons. Add this to the list of stuff to check when I get home.