This update addresses several bugfixes and some low security issues as well as the recently seemingly wide-spread XSS issue (only affecting Internet Explorer).
# Added extra checks to the deletion code in privmsg.php - reported by party_fan
# Fixed XSS issue in IE using the url BBCode
# Fixed admin activation so that you must have administrator rights to activate accounts in this mode - reported by ieure
# Fixed get_username returning wrong row for usernames beginning with numerics - reported by Ptirhiik
# Pass username through phpbb_clean_username within validate_username function - AnthraX101
# Fixed PHP error in message_die function
# Fixed incorrect generation of {postrow.SEARCH_IMG} tag in viewtopic.php - reported by Double_J
# Also fixed above issue in usercp_viewprofile.php
# Fixed incorrect setting of user_level on pending members if a group is granted moderator rights - reported by halochat
# Fixed ordering of forums on admin_ug_auth.php to be consistant with other pages
# Correctly set username on posts when deleting a user from the admin panel
The board has been updated to v2.0.17
-
- Site Admin
- Posts: 22
- Joined: Sun May 15, 2005 2:09 pm
-
- Wanderer
- Posts: 5
- Joined: Sun Nov 27, 2005 12:29 pm
- Contact:
You bet
Admin wrote:This update addresses several bugfixes and some low security issues as well as the recently seemingly wide-spread XSS issue (only affecting Internet Explorer).
:lol: you bet! good job anyway..
PHPBB-BG.INFO