phpMyChat Vulnerability – seeking help from the officials

News, OpenSource, PHP
A post from my old blog (archives): On May 5th 2005, we had to close our chat room because of some "bad users" getting into the chat room using the vulnerability in phpMyChat that allows a remote user to bypass authentication. I looked at the vendor's website but to my surprise the development is put to a full stop. There was no official or unofficial patch for the above problem. While I was looking for a patch i found numerous security monitoring websites that has listed this and many other BUGS since June 2004 (almost a year ago). I was like; "The security holes were discovered almost a year before but there is no, absolutely NO comment over that. An immediate patch is also missing. The point to note is…
Read More