b2 SECURITY FIX
by cjc
http://www.cafelog.com/board/viewtopic.php?t=3212


near the end of the b2-include/b2functions.php file, there is a line like: 

[Code] 
require_once($b2inc."/lj_update.php"); 
[/code]


Change this to: 
 
[code]
require_once("b2config.php"); 
require_once($b2inc."/lj_update.php"); 
[/code]

NOTE: IF YOU CAN'T FIND THE LINE ABOVE, find:

[code]
	# b2 fix for the bug with HTML comments
	$newtext = str_replace("< !--","<!--",$newtext);
	$newtext = str_replace("<    !--","< !--",$newtext);

	return $newtext;
}

[/code]

and after it, at the end of the file, ADD this:

[code]
require_once("b2config.php"); 
require_once($b2inc."/lj_update.php"); 
?>
[/code]

Remember: no empty spaces after ?>


I'm not sure if these problems should be characterized as "little".
Yes, they're easy to fix, but not fixing them can have serious consequences.
There's a thread in the "Chat Away" forum where someone details his experience
of being hacked because of the gm-2-b2.php problem.
It should be noted that having php configured to be "register globals" off will
stop this exploit, too.

More on the Cafélog b2 Arbitrary Command Execution:

http://www.cafelog.com/board/viewtopic.php?t=3410
http://www.osvdb.org/displayvuln.php?osvdb_id=4768