XOOPS 
Forum
Forum Index General Forums Community Support Modules Support Themes Support Development International Support Module Hack Reviews Theme Designer Talk


(1) 2 3 »


1
ouioui
XOOPS 2.2.3 Arbitrary local file inclusion

  • 2006/4/24 10:59

  • ouioui

  • Just popping in

  • Posts: 32

  • Since: 2003/7/11


i don't anderstand what happend really, Johnny Long say that there is a security problem. isnt'it ?
He say : "XOOPS 2.2.3 Arbitrary local file inclusion"

http://johnny.ihackstuff.com/index.php?module=prodreviews&func=showcontent&id=1525

What do you think abaout it ?
Topic | Forum


2
ouioui
Re: response

  • 2006/3/30 10:42

  • ouioui

  • Just popping in

  • Posts: 32

  • Since: 2003/7/11


I have log the errors because the XoopsErrorHandler_Shutdown do an "echo" witch can be intercept by the browser in case of ajax architecture.

Dowload the pear log package :
http://pear.php.net/package/Log/

And code in ..\class\errorhandler.php file the folowing code

function XoopsErrorHandler_Shutdown() {
 $error_handler =& XoopsErrorHandler::getInstance();
 require XOOPS_ROOT_PATH.'/class/Log.php'// the pear log
 $conf = array('mode' => 0600'timeFormat' => '%X %x');
 $log_error = &Log::singleton('file''error.log''ident'$conf);
 $log_error->log($error_handler->renderErrors());
//    echo $error_handler->renderErrors();
}


instead of
function XoopsErrorHandler_Shutdown()
{
 $error_handler =& XoopsErrorHandler::getInstance();
 echo $error_handler->renderErrors();
}


Hope that helps,
Topic | Forum


3
ouioui
response

  • 2006/3/30 8:43

  • ouioui

  • Just popping in

  • Posts: 32

  • Since: 2003/7/11


For people who are reading this thread :
There is no documentation about errorhandler except the code.

You must see
..\class\errorhandler.php
function XoopsErrorHandler()
{
  set_error_handler('XoopsErrorHandler_HandleError');
  register_shutdown_function('XoopsErrorHandler_Shutdown'); 
}


and to know are are doing the XoopsErrorHandler, you must see the PHP doc...
- set_error_handler
- register_shutdown_function
Topic | Forum


4
ouioui
Re: How to show number of users in a specific module?

  • 2006/3/29 14:23

  • ouioui

  • Just popping in

  • Posts: 32

  • Since: 2003/7/11


see the
function getCount($criteria = null)
in the file
..\kernel\user.php
Topic | Forum


5
ouioui
How Use ErrorHandler in a ajax architecture

  • 2006/3/29 14:01

  • ouioui

  • Just popping in

  • Posts: 32

  • Since: 2003/7/11


Hi,

I try to do an ajax module but when i have php i can catch the error.
I see a XoopsErrorHandler and a ErrorHandler class.
How can i use it ? If there is documentation ?
Topic | Forum


6
ouioui
Re: Next Version

  • 2006/3/24 16:57

  • ouioui

  • Just popping in

  • Posts: 32

  • Since: 2003/7/11


I was mistaken.


Quote:
So it can't be much longer before the next alpha is released.


I'm happy.
Long life with xoops
Topic | Forum


7
ouioui
Re: Next Version

  • 2006/3/22 10:01

  • ouioui

  • Just popping in

  • Posts: 32

  • Since: 2003/7/11


I read the last post onhttp://devteam.xoops.org/ and i ask me some questions :

- Is XOOPS core team became a french team ?
- Where are the developpers like Mithrandir or Herko ? Is there alway in the core team.
- Since 1 years a new XOOPS release is announced but .... and i'am lost...
Topic | Forum


8
ouioui
How use xoopsmailer without & # 0 3 9 car

  • 2005/9/19 12:17

  • ouioui

  • Just popping in

  • Posts: 32

  • Since: 2003/7/11


Hi,

I try to use xoopsmailer to send a mail. The body of the mall is a text stored in data base. The xoopsmailer encode the ' in HTML. the ' became & # 0 3 9.
This is the only one caractere witch is encoded !

How can i use xoopsmailer without this behavior ?
Topic | Forum


9
ouioui
make automaticly a logo.png

  • 2005/9/2 15:07

  • ouioui

  • Just popping in

  • Posts: 32

  • Since: 2003/7/11


Is someone can help me to construct with php code a XOOPS icones ?
I'm looking for a sample ou a url.

Best regard
Topic | Forum


10
ouioui
Re: I lost my admin access

  • 2005/6/8 16:03

  • ouioui

  • Just popping in

  • Posts: 32

  • Since: 2003/7/11


If you remember you password, type "lost password ?".

If not, you can see it in the xoops_users table and type "lost password ?"
Topic | Forum



TopTop
(1) 2 3 »



[Advanced Search]

Login

Register now!  |  Lost Password?

Search

Advanced Search

Recent Posts

Who's Online

153 user(s) are online (91 user(s) are browsing Support Forums)

Members: 0

Guests: 153

more...

Donat-O-Meter

Stats
Goal: $100.00
Due Date: Apr 30
Gross Amount: $0.00
Net Balance: $0.00
Left to go: $100.00
Make donations with PayPal!

Latest GitHub Commits