Small security fix! Open takeprofedit.php
Find this
Code:
if (!preg_match('#^((http)|(ftp):\/\/[a-zA-Z0-9\-]+?\.([a-zA-Z0-9\-]+\.)+[a-zA-Z]+(:[0-9]+)*\/.*?\.(gif|jpg|jpeg|png)$)#is', $avatar))
newerr($tracker_lang['error'], $tracker_lang['avatar_adress_invalid']);
And replace with this:
Code:
if(!preg_match("/^http:\/\/[^\s'\"<>?;&]+[^.]+\/+[a-z]+\.(jpg|gif|png)$/i", $avatar))
newerr($tracker_lang['error'], $tracker_lang['avatar_adress_invalid']);