Beschreibung: Avatar Upload Modul f│r PHPNuke 6.0 gegen│ber V.0.2: => Security Fix: Man kann von nun an Typ des Bildes (voreingestellt auf .gif) und GR═SSE des Bildes festlegen! (voreingestellt auf ca. 5kb) Und zwar nicht mehr in der index.php des Modules sondern in der upload.php! (d.h. von aussen kann nicht mehr die gr«sse des Bildes/der Datei bestimmt werden!) => Erweiterte Fehlererkennung (z.B wenn man kein Bild hochgeladen hat, oder wenn das Bild zu gross bzw. im falschen Format vorliegt) => Anzeige des Avatares nach dem Upload!
Beschreibung: In this release:
- compatible with the PHP Nuke last releases 5.6 - 6.0 - 6.5 - 6.6 - 6.7 - 6.8 - 6.9
- Database Re-organization and optimization with a more proper field type usage with a consequent restrain of the table dimensions
- Perfected the new automatic installer that enables a simple and quick installation
- Is now also possible to upgrade from previous versions through the installer
- Added the functionality that permits personalized avatar upload from users
- Added the functionality that permits the direct visualization of image attachments in the message body
- Added the "MySF" My Splatt Forum page in which every user will be able to see and quickly navigate through his own posts, other user's posts he has answered to, the list of messages for wich email notification was chosen.
- Added the possibility to block a message on top of viewform-php (sticky posts)
- Modified layout in index
- Added "Preview" funcion in newtopic reply and editpost files. Of course permits to see a preview of the message befor sending it
...and a lot more
Beschreibung: phpbb2 forums port version 2.0.5 (c) 2003 - Nuke Cops (http://nukecops.com) Ported by Nuke Cops to phpbb2 standalone 2.0.5 Test and debugging completed by the Elite Nukers and site members. You run this package at your sole risk. Nuke Cops and affiliates cannot be held liable if anything goes wrong. You are advised to test this package on a development system. Backup everything before implementing in a production environment. If something goes wrong, you can always backout and restore your backups. Installing and running this also means you agree to the terms of the AUP found at Nuke Cops. This is version 2.0.5 of the phpbb2 forum port for PHP-Nuke. Work is based on Tom Nitzschner's forum port version 2.0.6. Tom's 2.0.6 port was based on the phpbb2 standalone version 2.0.3. Our version 2.0.5 from Nuke Cops is now reflecting phpbb2 standalone 2.0.5 that fixes some bugs and the invalid_session error message.
Beschreibung: What has changed in this release?
The changelog (contained within this release) is as follows:
[Fix] corrected index on session keys table under MS SQL
[Fix] added session keys table to backup
[Fix] delete session keys entries when deleting user
[Fix] changes to support MySQL 5.0
[Fix] changes to some of the admin files to improve efficiency and remove a potential error condition when building the menu
[Fix] change truncation of username length in usercp_register.php - BFUK
[Fix] incorrect path to avatars in admin_users.php (Bug #667)
[Fix] fixed get_userdata to support correct sql escaping (non-mysql dbs) - jarnaez
[Fix] fixed captcha for those not having the zlib extension enabled
[Change] Placed version information above who is online in admin panel for better visual presence
[Sec] fixed XSS issue (only valid for Internet Explorer) within the url bbcode
[Sec] fixed XSS issue (only valid for Internet Explorer) if html tags are allowed and enabled
[Sec] added configurable maximum login attempts to prevent dictionary attacks
* [Fix] incorrect handling of password resets if admin activation is enabled (Bug #88)
* [Fix] retrieving category rows in index.php (Bug #90)
* [Fix] improved index performance by determining the permissions before iterating through all forums (Bug #91)
* [Fix] wrong topic redirection after login redirect (Bug #94)
* [Fix] improved handling of username lists in admin_ug_auth.php (Bug #98)
* [Fix] incorrect removal of bbcode_uid values if bbcode has been turned off (Bug #100)
* [Fix] correctly preview signature if editing other users posts (Bug #101)
* [Fix] incorrect alt tag on generated search images in groupcp.php, viewtopic.php and usercp_viewprofile.php (Bug #102)
* [Fix] consistent forum ordering in all dropdown boxes (Bug #106)
* [Fix] correctly get compression status in page_tail.php and page_footer_admin.php (Bug #117)
* [Fix] set page title on summary page of groupcp.php (bug #125)
* [Fix] correctly test style and avatar in usercp_register.php (bug #129 and #317)
* [Fix] handling of reactivation notifications if admin activation is enabled (Bug #145)
* [Fix] handling of both forms of translation information used in language packs (Bug #159)
* [Fix] key length for activation keys fixed in usercp_sendpassword.php (Bug #171)
* [Fix] use GENERAL_MESSAGE constant in message_die instead of MESSAGE (Bug #176)
* [Fix] incorrect handling of move stubs (Bug #179)
* [Fix] wrong mode_type in memberlist (Bug #187)
* [Fix] SQL errors when setting maximum PMs to 0 (Bug #188)
* [Fix] removed unused variable from topic_notify email template (Bug #210)
* [Fix] removed unset variable from smilies popup window title (Bug #224)
* [Fix] removed duplicate template assignment from admin_board.php (Bug #226)
* [Fix] incorrect search link for guest posts in modcp.php (Bug #254)
* [Fix] all users removed from topics watch table on special occassions (Bug #271)
* [Fix] correctly check returned value from strpos in append_sid function (Bug #275)
* [Fix] correctly display username in private message notification (Bug #278)
* [Fix] fixed "var-by-ref" errors (Bug #322)
* [Fix] changed redirection to installation (Bug #325)
* [Fix] added timout of 10 seconds to version check (Bug #348)
* [Fix] fixed user_level default in postgresql schema file (Bug #444)
* [Fix] multiple minor HTML issues with subSilver
* [Change] deprecated the use of some PHP 3 compatability functions in favour of the native equivalents
* [Change] added 60 days limit for grabbing unread topics in index.php
* [Sec] backport of session keys system from olympus
* [Sec] fixed email bans to use the same pattern as email validation and allow wildcard domain bans
* [Sec] fixed validation of topic type when posting
* [Sec] unset database password once it is no longer needed
* [Sec] fixed potential to select images outside the specified path as avatars or smilies
* [Sec] fix globals de-registration code for PHP5 - (Stefan Esser/Matt Kavanagh)
* [Sec] changed avatar gallery code sections to prevent possible injection points (AnthraX101)
* [Sec] signature field is not properly sanitised for user input when an error occurs while accessing the avatar gallery (AnthraX101)
* [Sec] check to_username and ownership when editing a PM (AnthraX101)
* [Sec] fixed ability to edit PM's you did not send (depablo84)
* [Sec] compare imagetype on avatar uploading to match the file extension from uploaded file
Beschreibung: The changelog (contained within this release) is as follows:
- Check for user's existence prior to showing email form
- New members of moderator groups should always become
moderators (Bug #382)
- Proper message when replying to non-existant topics (Bug
#459)
- Changed column type of search_array to store more ids (Bug
#4058)
- Fixed annoyance with font-size selector (Bug #4612)
- Fix optimize line in database updater (Bug #6186)
- Check for the avatar upload directory reinforced
- Changes to the criteria for "bad" redirection targets -
kellanved
- Fixed a non-persistent XSS issue in private messaging
- Fixing possible negative start parameter - SpiderZ.
- Added session checks to various forms - kellanved
Beschreibung: phpBB 2.0.5 ported to PHP-Nuke.
As with any beta do not use on a production website and make a backup of your Forums and includes folders before uploading.
To use simply upload the Forums and includes folders so that they replace your current files.
Beschreibung: Changes:
Fixed several vulnerabilities in admin pages
Fixed sid checking code in admin/pagestart.php
Fixed injection vulnerabilities possible with the img bbcode tag
Limited allowed images in img bbcode tag to jpg, jpeg, gif and png
Fixed redirect problems - 2.0.7a
Fixed sql injection vulnerability in search - 2.0.7a
To view the files that need to be replaced to upgrade from BBtoNuke 2.0.7 to 2.0.8 or to make the changes manually go here, the only two files you won't be able to manually edit are pagestart.php and bbcode.php, the first one underwent changes only valid on PHP-Nuke and the second one was re-ported.
Beschreibung: Fixed deleting of styles in admin_styles.php
Fixed wrong unsetting of variables introduced in phpBB 2.0.9, making the board non-functional for users with specific php.ini settings
Added code to let phpBB work with PHP5 for those having register_long_arrays set to off (default settings) - running phpBB 2.0.x with PHP5 is not supported at http://www.phpbb.com.
Fixed bug in admin_board.php for board settings having single quotes in it
Fixed "search by author" in search.php. Now it is possible to search for users with special chars in their name too
Fixed forum jumpbox propagating session id in moderator control pages
Added check for newlines at redirecting pages, to prevent http response splitting attacks - Ory Segal and Amit Klein
Fixed visual confirmation code. The image was not created due to a wrong regular expression.
Beschreibung: Paladin's PHP-Nuke 6.5 phpBB Forums Annexe
This fairly simple module works like a monster block-Forums. It will display the BBCODE (thanks Mat) output of the the 10 latest POSTS in your phpBB Forums.
The output is intended to be similar in appearance to your News Articles - but since the output is 99% controlled by your PHP-Nuke Theme, it's very easy to make it look any way you like!
All logos and trademarks in this site are property of their respective owner. The comments are property of their posters, all the rest (c) 2004-2012 by phpnuker.de.
Alle Besucher
Nur Mitglieder
Information
