phpBB 2.0.12

Posted on Tuesday, Feb 22 2005 @ 23:56 CET by LSDsmurf

Changes in phpBB 2.0.12
  • Added confirm table to admin_db_utilities.php
  • Prevented full path display on critical messages
  • Fixed full path disclosure in username handling caused by a PHP 4.3.10 bug - AnthraX101
  • Added exclude list to unsetting globals (if register_globals is on) - SpoofedExistence
  • Fixed arbitrary file disclosure vulnerability in avatar handling functions - AnthraX101
  • Fixed arbitrary file unlink vulnerability in avatar handling functions - AnthraX101
  • Removed version number from powered by line
  • Merged database update files to update_to_latest.php file
  • Fixed path disclosure bug in search.php caused by a PHP 4.3.10 bug (related to AnthraX101's discovery)
  • Fixed path disclosure bug in viewtopic.php caused by a PHP 4.3.10 bug - matrix_killer

Program Information

Category:
Internet and communication
Type:
Free


Version:
2.0.12
Size:
660KB
Works on:
/


Product page: here

Download: phpBB 2.0.12



Loading Comments