Jump to content

Welcome to DevFuse Forums

Sign In  Log in with Facebook

Create Account
Welcome to DevFuse Forums, like most online communities you must register to view or post in our community, but don't worry this is a simple free process that requires minimal information for you to signup. Be apart of DevFuse Forums by signing in or creating an account.
  • Start new topics and reply to others
  • Subscribe to topics and forums to get email updates
  • Get your own profile page and make new friends
  • Send personal messages to other members.
Guest Message by DevFuse

(View All Products)Featured Products

  • Donations

    Help fund your forum with donations, setup goals and track member donations. Offer rewards for members donating.
  • Timeslips

    Have your members submit their race times and share with others.
  • Videos

    Allows your members to submit their own videos for community viewing. Support is included for all the major video sites.
  • Forms

    Build your own forms for your members without coding experience. Support included for pm, email and topics.
  • Collections

    Build a community database of items for your members. Full features custom fields included.


IP.Board 3.0.x Security Patch Released

  • Please log in to reply
No replies to this topic

#1 News Bot

News Bot

    Dedicated Member

  • Members
  • PipPipPipPipPip
  • 1,909 posts
  • IP.Board Version:N/A

Posted 14 May 2010 - 07:10 AM

A security issue has been discovered in IP.Board 3.0.x that could potentially allow a malicious user to insert JavaScript or other code into your community.

The damage this sort of attack can do is mitigated by IP.Board's use of HTTP-only cookies and other security measures.

As part of our continued dedication to security enhancement, we are releasing a simple patch for IP.Board 3.0.5 to address this issue. If you are running IP.Board versions less than 3.0.5 simply upgrade your software version. Note that this issue does not exist in IP.Board 3.1.0 Beta 2 and beyond.

Download Patch

Simply upload the attached file to: admin/sources/classes/bbcode/custom/defaults.php

 defaults.zip (9.67K)
: 29

The main 3.0.5 download zip has been updated as of this date.

Source: Click Here

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users