15 years on The Web
miniBB ® miniBB®
miniBB Support Forums
 | Forums | Register | Reply | Search | Statistics | Manual |
News & Announcements miniBB Support Forums / News & Announcements /   

miniBB version 2.0 RC4b released (possible vu1neerability fix)

Author Team
#1 | Posted: 30 Aug 2005 18:37 | Edited by: Team 
Mr. Sam Tomas recently discovered, that if you have magic_quotes_gpc set to OFF in php.ini, there is a very possible vu1neerability with high seecurity risk. In most cases, magic_quotes_gpc is set to ON, and it is set to ON by default in PHP installation, but anyway, it is higly recommended to upgrade to the new version for everybody.

This disclosure was only reported to us and never published by him, so we are VERY thankful to him for that. RC4b fixes bb_cookie.php file, which could be affected. We are also providing new BB codes JavaScript interface in this release, which allow to use JavaScript buttons more native way. Read more in !UPDATE.txt.

Author Ivan
Advanced Member
#2 | Posted: 30 Aug 2005 21:14 | Edited by: Ivan 
Than why, if you excuse my ignorance:

RC4a UPDATE_DB.sql 03..05.2005 => 1,676 bytes

RC4b UPDATE_DB.sql 30.08.2005 => 1,952 bytes

I saw it while I searched for the updated readme.

Author Team
#3 | Posted: 30 Aug 2005 21:46 
You don't require to update anything - we just added IGNORE statement so users who will update database, should not have errors on duplicated columns, which may happen often for previous releases.

Author Ivan
Advanced Member
#4 | Posted: 30 Aug 2005 22:24 

News & Announcements miniBB Support Forums / News & Announcements / miniBB version 2.0 RC4b released (possible vu1neerability fix) Top

Your Reply Click this icon to move up to the quoted message

 Short link for this topic:

You are welcome to post anonymously, by entering a nickname with no password (if the similar Username has not been taken yet), or by leaving both fields empty. If you have a forums account, you can also sign in from this page without posting a message, or sign in and post at once.

Before posting, make sure your message is compliant with our forum posting rules. If not, it may be locked or deleted with no explanation.
miniBB Support Forums Powered by Forum Software miniBB ® Features  Requirements  Demo  Download  Showcase  Gallery of Arts
Compiler  Premium Extensions  Premium Support  License  Contacts
Get the Captcha add-on: protect your miniBB-forums from the automated spam and flood.
Captcha Addon for miniBB