Friendly Star Trek Discussions Fri Nov 22, 2024 1:36 pm  
  SearchSearch   FAQFAQ   Log inLog in   
Update: phpBB 2.0.10
View: previous topic :: next topic
stv-archives.com Forum Index -> Announcements This topic is locked: you cannot edit posts or make replies.   This forum is locked: you cannot post, reply to, or edit topics.
Author Message
Morphy
Forum Ogre


Joined: 15 Jun 2001
Posts: 3858
PostSat Aug 21, 2004 5:52 pm    Update: phpBB 2.0.10

We're updated to phpBB 2.0.10. Below is a list of changes.


Code:


Changes since 2.0.9

    * Fixed deleting of styles in admin_styles.php
    * Fixed wrong unsetting of variables introduced in phpBB 2.0.9, making the board non-functional for users with specific php.ini settings
    * Added code to let phpBB work with PHP5 for those having register_long_arrays set to off (default settings) - running phpBB 2.0.x with PHP5 is not supported at http://www.phpbb.com.
    * Fixed bug in admin_board.php for board settings having single quotes in it
    * Fixed "search by author" in search.php. Now it is possible to search for users with special chars in their name too
    * Fixed forum jumpbox propagating session id in moderator control pages
    * Added check for newlines at redirecting pages, to prevent http response splitting attacks - Ory Segal and Amit Klein
    * Fixed visual confirmation code. The image was not created due to a wrong regular expression.




Changes since 2.0.8

    * Fixed one vulnerability in admin_board.php - Xore
    * Added checking for proper session id characters to sessions and viewtopic to prevent injections - Bartlomiej Korupczynski
    * Fixed injection vulnerabilities possible with linked avatars
    * Implemented unsetting globalised variables
    * Limited confirm switch to POST variable in posting
    * Changed IP code in common.php to prevent IP spoofing, which might introduce some problems with private IP Ranges showing up. - Wang Products
    * Updated visual confirmation mod [pre-edited files]
    * Moved obtaining word censors in modcp out of topic generation loop [increased performance/lower query count] - spotted by R45
    * Added the ability to link to https/ftps sites using the img bbcode tag
    * Fixed user online information in admin/index.php
    * Fixed getting group moderator in groupcp.php if running oracle backend - spotted by pakman
    * Fixed use of non-existing result variable in modcp (poster_id instead of user_id)
    * Fixed several vulnerabilities (XSS, SQL Injection and path disclosure) only possible with register_globals enabled - Matthew C. Kavanagh, Janek Vind
    * Fixed problem with SID not delivered to next page in groupcp.php


View user's profile Send private message Visit poster's website  
Reply with quote Back to top
Display posts from previous:   
stv-archives.com Forum Index -> Announcements
This topic is locked: you cannot edit posts or make replies.   This forum is locked: you cannot post, reply to, or edit topics.



Jump to:  
You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum
Powered by phpBB © 2001, 2002 phpBB Group
Star Trek �, in all its various forms, are trademarks & copyrights of Paramount Pictures
This site has no official connection with Star Trek or Paramount Pictures
Site content/Site design elements owned by Morphy and is meant to only be an archive/Tribute to STV.com