Bravo List
Register
Go Back   > Bravo List > Source Code > Archived Trackers > YSE
Reply
  #1  
Old 1st December 2009, 07:55
mondolfo's Avatar
mondolfo mondolfo is offline
Senior Member
 
Join Date: Nov 2009
P2P
Posts: 18
Default Pre 6 RC 0
15.09.09
С форумом простились, аминь!

Мелкие пакости правки, и прочее прочее прочее:

1. Переведены языковые файлики на ArrayAccess.
2. Блокировка скрипта если включен regsiter_globals или не забитыми всяким хламом переменными
3. Привязка кукисов к подсети 255.255.0.0
4. Еще всякие мелочки, кому надо - diff в помощь

04.10.09

1. Исправлен баг с gzip()
2. Это все

17.10.09

1. Исправлена XSS в browse.php
2. Исправление проблемы пропадания расширения у картинки, если оно состояло из 4-х символов (.jpeg)
3. Мелкие правки

17.10.09-r2

1. Исправлена уязвимость позволявшая перехватить логин пароль и имя доступа к БД

20.10.09

1. XSS в takesignup.php
2. Убран лишний запрос в announce.php

12.11.09

1. Исправлена привязка кукисов к IP

16.11.09

1. Исправлен аннонсер


snapshot_16.11.09.zip
Reply With Quote
  #2  
Old 1st December 2009, 09:05
Krypto's Avatar
Krypto Krypto is offline
Administrator
 
Join Date: Jan 2008
P2P
Posts: 509
Default
Translated, sort of!

15.09.09
To the forum they said good-bye, amen!

The small dirty tricks of correcting, are etcetera other other:

1. are transferred lingual [fayliki] into ArrayAccess.
2. blocking script if is included on regsiter_globals or by the not oppressed by any rubbish variables
3. tying of [kukisov] to the subnetwork 255.255.0.0
4. also any [melochki], to whom is must - diff to help

04.10.09

1. is corrected [bag] from gzip ()
2. this all

17.10.09

1. is corrected XSS into browse.php
2. correction of the problem of the disappearance of expansion in picture, if it consisted of the 4th symbols (.jpeg)
3. the small correctings

17.10.09-r2

1. is corrected vulnerability made it possible to intercept [login] password and the name of access to [BD]

20.10.09

1. XSS into takesignup.php
2. is removed excess demand into announce.php

12.11.09

1. is corrected the tying of [kukisov] to IP

16.11.09

1. is corrected [annonser]
__________________


Please DO NOT "PM" me for Personal Support!! Keep all questions on the board so all can benefit.

Reply With Quote
  #3  
Old 11th December 2009, 00:52
roland340's Avatar
roland340 roland340 is offline
Member
 
Join Date: Sep 2009
Spain
Posts: 8
Default
PLEASE A ENGLISH TRANSLATE TOTAL TO THIS VERSION,,,, in charsets,,, in all please ... ;)
Reply With Quote
Reply

Tags
pre , rc

Thread Tools

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off

Forum Jump



All times are GMT +2. The time now is 22:14. vBulletin skin by ForumMonkeys. Powered by vBulletin® Version 3.8.11 Beta 3
Copyright ©2000 - 2020, vBulletin Solutions Inc.