Admin.php XSS Patch Revision II Date: Tuesday, March 23 @ 11:10:39 CET Topic: Security Yesterday I released a hot off the press admin.php patch. I learned of the exploit only 10 minutes prior to it. Today I found out that the graphic image doesn't show up because of it, so without further adieu, here is version number 2 such that the image works. if ($argv[0] != "") { if (!preg_match("/op=gfx/", "$argv[0]")) { if (!preg_match("/admin.php/", "$refer")) { echo "Nuke Cops Loves You http://nukecops.com"; exit; } } } This article comes from NukeCops http://www.nukecops.com The URL for this story is: http://www.nukecops.com/modules.php?name=News&file=article&sid=1797