Fork me on GitHub

Search

Donat-O-Meter

Make donations with PayPal!
Stats
Goal: $100.00
Due Date: May 31
Gross Amount: $105.00
Net Balance: $100.60
Surplus: $0.60

Donations
Anonymous ($105)May-4

Learn XOOPS Core

Local Support

Advertisement

XOOPS Code hosted on SourceForge

Cumulus Tag Cloud

- 2 2.5 2.6 4 6 admin Android AntiHarvesting AntiSpam API Apple Battlefield Blocks Bootstrap Captcha cell chronolabs Clicks Cloud content CĂN demo download Dresses facebook Fat floor Gateway giải Google Guide herre Home Honeypot html5 Human HỘ IP iPhone jQuery Language Law Legal List log Loss module modules Monster new newbb news nhiệt NHÀ online PARK Payment phone PHP Prevention profile project Protector publisher RESIDENCE responsive review Rights rmcommon Room security Sentry Signatures Signed site Smartphone Smarty Smoking Solution Spam stem Studio support tag tdmcreate The Theme themes tháp User userlog web weight xoops Xortify XPayment ZendFramework

New Users

Registering user

# 138817

andinisip

Welcome to XOOPS!

Archives

News archives

XOOPS 2.5.7.1 Security Patch Released

Posted by Mamba on 2014/11/25 0:20:00 (15426 reads) | Posted on XOOPS
The XOOPS Development Team is pleased to announce the release of a security patch for XOOPS 2.5.7 Final.

This patch for XOOPS 2.5.7 corrects the following issues:

- CSRF and XSS issues reported by Dingjie 'Daniel' Yang of Web Security Lens
- XSS and best practice issues reported by Narendra Bhati

We would like to specifically thank our friends Dingjie 'Daniel' Yang of Web Security Lens and Narendra Bhati, who notified us about these issues, and to Richard (aka Geekwright), our Core Team Leader, who provided the fixes.

All XOOPS 2.5.7 users are advised to apply this patch as soon as possible.

Download: You can download the patch from XOOPS File Repository on SourceForge

Any users that are running an older XOOPS version are advised to update to XOOPS 2.5.7.1 now, which includes the patch.

Resized Image

You can find more information about the original XOOPS 2.5.7 release in this article


Printer friendly page Send this story to a friend Create a PDF from the article
Bookmark Me
Bookmark to Google Plus
The comments are owned by the author. We aren't responsible for their content.

Work very cool
I thank those who contributed to the success Hamia
Published: 2014/11/27 17:08 • Updated: 2014/11/27 17:08
https://svn.code.sf.net/p/xoops/svn/Xo ... ges/russian/core/2.5.7.1/

XOOPS 2.5.7.1 Russian!
Published: 2015/3/23 11:25 • Updated: 2015/3/23 11:25
Andrey3761, Большое спасибо! (Thank you very much!)
Published: 2015/3/24 2:28 • Updated: 2015/3/24 2:29