PHP-Nuke 7.3 security and bug fix update.
Fixes:
Path disclosure in security check of files.
Included instructions mainly cover that one but included files also cover:
Sql Injection
filter update
Stories categories
show as already existing even if they don't.
Missing semi-colon
in admin stories file
Downloads
orderby fix
Mailpasswd
username length limit
Incorrect
user validation in Your Account module
Stories with
timestamp 00:00:00 don't
show in Stories_Archive.
Single quotes
in content category description.
Multiple vulnerabilities
SQL injection and XSS
Download here.
Update: Forum files removed from patch and security fix applied to the Reviews module.
|
This article comes from Ravens PHP Scripts
https://www.ravenphpscripts.com
The URL for this story is:
https://www.ravenphpscripts.com/modules.php?name=News&file=article&sid=368
https://www.ravenphpscripts.com
The URL for this story is:
https://www.ravenphpscripts.com/modules.php?name=News&file=article&sid=368