Icy Phoenix

     
 


Post new topic  This topic is locked: you cannot edit posts or make replies. 
Page 1 of 1
 
 
Reply with quote Download Post 
Post 058-006 - FIXED - More Security Fixes 
 
Hi all.

I'm sorry for having to post again a critical patch about a new security hole I've found in phpBB XS thanks to mameto.

Please, apply this patch to your XS as soon as possible.

This patch fixes a security issue in BB Usage Stats and a couple of small bugs in other files.

058_006_More_Security_Fixes.zip
Description: 058-006 - More Security Fixes 
Download
Filename: 058_006_More_Security_Fixes.zip
Filesize: 56.83 KB
Downloaded: 863 Time(s)

 




____________
Luca
SEARCH is the quickest way to get support.
Icy Phoenix ColorizeIt - CustomIcy - HON
 
Mighty GorgonSend private messageSend e-mail to userVisit poster's website  
Back to topPage bottom
Icy Phoenix is an open source project, you can show your appreciation and support future development by donating to the project.

Support us
 
Reply with quote Download Post 
Post Respuesta: 058-006 - FIXED - More Security Fixes 
 
Thanks MG and Mameto
 




____________
ThE KuKa - www.phpBB-Es.COM - Custom Installations phpBB
 
ThE KuKaSend private messageVisit poster's website  
Back to topPage bottom
Reply with quote Download Post 
Post Re: 058-006 - FIXED - More Security Fixes 
 
Why dymanic meta tags doesn't works after this update?  
 




____________
My Icy forum: www.lineameteo.it
Staff Member @ IcyPhoenix.com & IcyPhoenix.it
 
andrea75Send private messageVisit poster's website  
Back to topPage bottom
Reply with quote Download Post 
Post Re: 058-006 - FIXED - More Security Fixes 
 
andrea75 wrote: [View Post]
Why dymanic meta tags doesn't works after this update?  

They are working here...
 




____________
Luca
SEARCH is the quickest way to get support.
Icy Phoenix ColorizeIt - CustomIcy - HON
 
Mighty GorgonSend private messageSend e-mail to userVisit poster's website  
Back to topPage bottom
Reply with quote Download Post 
Post Re: 058-006 - FIXED - More Security Fixes 
 
Mighty Gorgon wrote: [View Post]
andrea75 wrote: [View Post]
Why dymanic meta tags doesn't works after this update?  

They are working here...


No Luca... they are the same in all topics and in all pages...

Code: [Download] [Hide]
  1. <meta name="title" content="058-006 - FIXED - More Security Fixes" />  
  2. <meta name="author" content="phpBB XS Staff :: http://www.phpBBXS.eu/" />  
  3. <meta name="copyright" content="(c) 2002-2006 phpBB XS Staff" />  
  4. <meta name="keywords" content="phpBB XS, phpBBXS, phpbb, premodded, communities, forum, portal, cms, open source, community, mods, templates" />  
  5. <meta name="description" content="phpBB XS" />  
  6. <meta name="category" content="general" />  
  7. <meta name="robots" content="index, follow" /> 


the problem is solved by Antonio Mercurio here

http://www.phpbbplus.it/phpbbplus/viewtopic.php?t=3468
 




____________
My Icy forum: www.lineameteo.it
Staff Member @ IcyPhoenix.com & IcyPhoenix.it
 
andrea75Send private messageVisit poster's website  
Back to topPage bottom
Reply with quote Download Post 
Post Re: 058-006 - FIXED - More Security Fixes 
 
Thus... thanx to Antonio
 




____________
Megabass
 
ganeshSend private messageVisit poster's website  
Back to topPage bottom
Reply with quote Download Post 
Post Re: 058-006 - FIXED - More Security Fixes 
 
No guys... META are working... they are set to be shown only when TOPIC, FORUM or CAT is viewed... not for post...

Check this part of the MOD:

Code: [Download] [Hide]
  1. if ( isset($_GET[POST_TOPIC_URL]) )  
  2. {  
  3.     $meta_topic_id = intval($_GET[POST_TOPIC_URL]);  
  4. }  
  5. elseif ( isset($_GET[POST_FORUM_URL]) )  
  6. {  
  7.     $meta_forum_id = intval($_GET[POST_FORUM_URL]);  
  8. }  
  9. elseif ( isset($_GET[POST_CAT_URL]) )  
  10. {  
  11.     $meta_cat_id = intval($_GET[POST_CAT_URL]);  


And try to view a topic...

Click here for example!

http://www.phpBBXS.eu/viewtopic.php?t=196

I wouldn't implement this even for posts, because it will slow down page loadings... and it's not a good thing...

Pages will be indexed when the topic link is clicked... and it's enough...
 




____________
Luca
SEARCH is the quickest way to get support.
Icy Phoenix ColorizeIt - CustomIcy - HON
 
Mighty GorgonSend private messageSend e-mail to userVisit poster's website  
Back to topPage bottom
Reply with quote Download Post 
Post Re: 058-006 - FIXED - More Security Fixes 
 
:0041:

Eheheh...
 




____________
Megabass
 
ganeshSend private messageVisit poster's website  
Back to topPage bottom
Reply with quote Download Post 
Post Re: 058-006 - FIXED - More Security Fixes 
 
Mighty Gorgon wrote: [View Post]
No guys... META are working... they are set to be shown only when TOPIC, FORUM or CAT is viewed... not for post...

Check this part of the MOD:

Code: [Download] [Hide]
  1. if ( isset($_GET[POST_TOPIC_URL]) )  
  2. {  
  3.     $meta_topic_id = intval($_GET[POST_TOPIC_URL]);  
  4. }  
  5. elseif ( isset($_GET[POST_FORUM_URL]) )  
  6. {  
  7.     $meta_forum_id = intval($_GET[POST_FORUM_URL]);  
  8. }  
  9. elseif ( isset($_GET[POST_CAT_URL]) )  
  10. {  
  11.     $meta_cat_id = intval($_GET[POST_CAT_URL]);  


And try to view a topic...

Click here for example!

http://www.phpBBXS.eu/viewtopic.php?t=196

I wouldn't implement this even for posts, because it will slow down page loadings... and it's not a good thing...

Pages will be indexed when the topic link is clicked... and it's enough...


Thanks Luca.. now I have understand. Sorry for my ignoranceabout it! But it wasn't so simple to understand...  
 




____________
My Icy forum: www.lineameteo.it
Staff Member @ IcyPhoenix.com & IcyPhoenix.it
 
andrea75Send private messageVisit poster's website  
Back to topPage bottom
Reply with quote Download Post 
Post Re: 058-006 - FIXED - More Security Fixes 
 
andrea75 wrote: [View Post]
Thanks Luca.. now I have understand. Sorry for my ignoranceabout it! But it wasn't so simple to understand...  

No problem... we are all here to learn!
 




____________
Luca
SEARCH is the quickest way to get support.
Icy Phoenix ColorizeIt - CustomIcy - HON
 
Mighty GorgonSend private messageSend e-mail to userVisit poster's website  
Back to topPage bottom
Post new topic  This topic is locked: you cannot edit posts or make replies.  Page 1 of 1
 


Display posts from previous:    

HideWas this topic useful?

Link this topic
URL
BBCode
HTML




 
Permissions List
You cannot post new topics
You cannot reply to topics
You cannot edit your posts
You cannot delete your posts
You cannot vote in polls
You cannot attach files
You can download files
You cannot post calendar events


  

 

  cron