Sec-Fix Patch 7.3
Date: Wednesday, June 09 @ 08:58:01 CEST Topic: PHP-Nuke
PHP-Nuke 7.3 security and bug fix update.
Fixes:
Path disclosure in security check of files.
Included instructions mainly cover that one but included files also cover:
Sql Injection filter update
Stories categories show as already existing even if they don't.
Missing semi-colon in admin stories file
Downloads orderby fix
Mailpasswd username length limit
Incorrect user validation in Your Account module
Stories with timestamp 00:00:00 don't show in Stories_Archive.
Single quotes in content category description.
Multiple vulnerabilities SQL injection and XSS
Download here.
|
|