Joined: 07 Apr 2003 Posts: 20349 Location: New Jersey
Posted: Thu, 22 Apr 2004 20:46:14 Post Subject: Upgraded phpBB from 2.0.6 to 2.0.8
Doesn't change much that may be noticed, but I did each line of code by hand to make sure I didn't mess up all the mods!
So... make sure I didn't mess up any of the mods, and report any bugs, please!!
Official changes:
l.i. Changes since 2.0.7
Fixed several vulnerabilities in admin pages
Fixed sid checking code in admin/pagestart.php
Fixed injection vulnerabilities possible with the img bbcode tag
Limited allowed images in img bbcode tag to jpg, jpeg, gif and png
Fixed redirect problems - 2.0.7a
Fixed sql injection vulnerability in search - 2.0.7a
1.ii. Changes since 2.0.6
Fixed several vulnerabilities in modcp - Robert Lavierck
Changed whois lookup address within admin index
Fixed potential vulnerability in viewtopic postorder - 2.0.6d
Updates to cope with Zend Optimizer 2.5 problems - 2.0.6d - jetset
Force specialcharing of redirect variable in login - Pit
Fixed potential vulnerability in viewtopic postdays - GulfTech Security Research
Fixed potential vulnerability in viewforum topicdays - GulfTech Security Research
Fixed potential vulnerability in modcp
Fixed potential vulnerability in avatar gallery
You cannot post new topics in this forum You cannot reply to topics in this forum You cannot edit your posts in this forum You cannot delete your posts in this forum You cannot vote in polls in this forum You cannot attach files in this forum You can download files in this forum