PhotoPost Photo Gallery Sales PhotoPost Sales Toll Free Phone Number
Mon-Fri 9am-4pm EST
  PhotoPost Photo Sharing Photo Gallery    Visualize community tm
Home| Details| Support| Demo: User / Admin| Customer Galleries| Contact Us| Forums| Blog| Members Area| Buy PhotoPost

Go Back   PhotoPost Community > PhotoPost Support > PhotoPost Classifieds Support > Classifieds Installation & Upgrades
Classifieds 2.02: Security Fix Classifieds 2.02: Security Fix
Register FAQ Social Groups Calendar Mark Forums Read

Classifieds Installation & Upgrades If you're having install or upgrade problems, post here.

Reply
 
LinkBack Thread Tools Rate Thread Display Modes
Old January 2nd, 2005, 10:14 AM   #1 (permalink)
PhotoPost Developer
Verified Customer
 
Join Date: Jan 2002
Posts: 11,834
Classifieds 2.02: Security Fix
=======================
PHOTOPOST CLASSIFIEDS 2.02
=======================

Minor update to address possible security vunerability.

Files changes since 2.01:

showcat.php
header-inc.php
uploadproduct.php

templates/searchbox.tmpl

Version numbers were updated with the files and should be uploaded:

pp-inc.php
adm-editcfg.php

You only need to upload these two files to bring your release up-to-date. There is no upgrade script to run and no database changes.

Security Fix Info
============

I've updated the current build which modifys a single line in uploadproduct.php which prevents unauthorized file types from being uploaded.

In uploadproduct.php at line 230 is the line:

if ( $realname != "none" && $realname != "" && is_image($realname) ) {

the modification has been made in bold. You can either modify the line yourself and update your script or download the current build and upload the file uploadproduct.php

The other files contain a minor fix to prevent html code from being passed as part of a URL string.
__________________
Please do not PM me for support or sales questions. Thank you for your understanding.
Michael P is offline   Reply With Quote
Reply

« Error when trying to place an ad | Not recognized as Admin in new PP CLassifieds install with IPB 2.03 integration »

Currently Active Users Viewing This Thread: 1 (0 members and 1 guests)
 
Thread Tools
Display Modes Rate This Thread
Linear Mode Linear Mode
Rate This Thread:

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts
BB code is On
Smilies are On
[IMG] code is On
HTML code is Off
Trackbacks are On
Pingbacks are On
Refbacks are On

Similar Threads
Thread Thread Starter Forum Replies Last Post
PhotoPost Classifieds 2.41 Security Update Michael P Classifieds Installation & Upgrades 1 July 11th, 2005 11:40 AM
PhotoPost Classifieds 2.4 Security Update Michael P Classifieds Bug Reports 0 July 1st, 2005 01:46 PM


All times are GMT -5. The time now is 08:27 AM.

Contact Us - PhotoPost - Archive - Privacy Statement - Top
Powered by vBulletin® Version 3.8.1
Copyright ©2000 - 2013, Jelsoft Enterprises Ltd.
Search Engine Friendly URLs by vBSEO 3.2.0
HOME | Copyright 2001-2013 ALL ENTHUSIAST, INC. ALL RIGHTS RESERVED.

1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75 76 77 78 79 80 81 82 83 84 85 86 87 88 89 90 91 92 93 94 95 96 97