Doctor Feelgood
Administrator
|
 Posted: Thu, 22 Apr 2004 20:46:14 Post Subject: Upgraded phpBB from 2.0.6 to 2.0.8 |
 |
|
Doesn't change much that may be noticed, but I did each line of code by hand to make sure I didn't mess up all the mods!
So... make sure I didn't mess up any of the mods, and report any bugs, please!! 
Official changes:
l.i. Changes since 2.0.7
Fixed several vulnerabilities in admin pages
Fixed sid checking code in admin/pagestart.php
Fixed injection vulnerabilities possible with the img bbcode tag
Limited allowed images in img bbcode tag to jpg, jpeg, gif and png
Fixed redirect problems - 2.0.7a
Fixed sql injection vulnerability in search - 2.0.7a
1.ii. Changes since 2.0.6
Fixed several vulnerabilities in modcp - Robert Lavierck
Changed whois lookup address within admin index
Fixed potential vulnerability in viewtopic postorder - 2.0.6d
Updates to cope with Zend Optimizer 2.5 problems - 2.0.6d - jetset
Force specialcharing of redirect variable in login - Pit
Fixed potential vulnerability in viewtopic postdays - GulfTech Security Research
Fixed potential vulnerability in viewforum topicdays - GulfTech Security Research
Fixed potential vulnerability in modcp
Fixed potential vulnerability in avatar gallery |
|
