Processing

Home  Contact us  RSS Feed


Account Menu
>  Home  
>  My Cart  
>  Create Account  
>  Log In  

Hosting Services
>  Shared Hosting  
>  Hosting Resellers  
>  Special Hosting  
>  Features Info  

Domain Services
>  Register Domain  
>  Transfer Domain  
>  Whois Lookup  
>  Domain Prices  

CashCrusader
>  Starter Kits  
>  Plugins  
  >  PolarScripts  
  >  Cash Plugins  
>  Services  
>  Security Notes  
>  Renewal  

Support
>  FAQ  
>  cPanel Tutorials  
>  Contact Us  

Resources
>  About Us  
>  Datacenter Info  
>  Guarantees Info  
>  TOS, AUP, SLA  
>  Privacy Policy  
>  GPT Resources  
CashCrusader adstats2.php critical vulnerability 
Vulnerability information

Discovered by: Jutaky, PolarWeb Ltd
Release Date: October 16th 2007
Software: CashCrusader / adstats2.php addon page
Critical: Highly critical
Impact: Complete read access to CashCrusader database
How: From remote / browser
Solution: 3rd party patch


Patch

Edit the beginning of the adstats2.php file and replace

<? include("setup.php");?>

with

<?
$_GET['advertiser'] = ereg_replace("[^a-zA-Z0-9]", "", $_GET[advertiser]);
include("setup.php");?>

We can install this patch for you. To order the installation service click HERE
Home |  Hosting |  Domains |  Support |  Log In |  Create Account |  Terms
Reseller Hosting Pricing Changed
Jul 30 2009
We have lowered our reseller webhosting pricing! Everyone's amount of bandwidth and other features have stayed the same but the price got lowered. Also nice discounts have been applied to quarterly/bi-annual/annual payment options! If you wish to change billing cycle, please contact helpdesk.

Existing reseller accounts with quarterly/bi-annual/annual billing have had free hosting months added to their billing cycle according to pre-paid hosting.

We have also made a discount coupon TENOFF which gives $10 discount for new reseller hosting signups. It is valid until August 31st 2009.

New prices can be seen at http://polarwebservices.com/hosting.php?spt=10