IPBSupport News 8 Report post Posted January 2, 2004 An update has been prepared to ensure security and safety of your Invision Power Board. We have received notification of a minor issue that although require some URL crafting and a specific version of MySQL in use to occur but we feel it's always best to address any and all issues to ensure the very best security. The update is very simple to apply, simply go to the download center and download the " 1.3 Security Patch 02-01-04" package, unzip and upload "sources/calendar.php" overwriting the copy on your installation. The main download files have been updated. Quelle: Invisionpower.com Download: Link Share this post Link to post
IPBSupport News 8 Report post Posted January 2, 2004 Und hier noch die Änderung im Detail. Betroffen ist die Datei, wie oben erwähnt, calendar.php im Verzeichnis sources. Folgende Stelle $this->chosen_month = ( ! intval($ibforums->input['m']) ) ? $this->now_date['mon'] : $ibforums->input['m']; $this->chosen_year = ( ! intval($ibforums->input['y']) ) ? $this->now_date['year'] : $ibforums->input['y']; ersetzen durch $this->chosen_month = ( ! intval($ibforums->input['m']) ) ? $this->now_date['mon'] : intval($ibforums->input['m']); $this->chosen_year = ( ! intval($ibforums->input['y']) ) ? $this->now_date['year'] : intval($ibforums->input['y']); Das waren schon alle Änderungen, sieht man vom Headerkommentar ab. :) Share this post Link to post