13
I've been away and it appears I've missed a few things. I'm still using version 2.0.16. Should I upgrade to Herve's version or use this revision 997 Marco mentioned? I don't know much about PHP. How would I incorporate rev 997?
Also, I have a few XOOPS v 2.2.4 sites - highly customized. I can't upgrade to 2.2.5 because of all the customizations. Hopefully the SQL injection does not affect the 2.2.4 version?
Quote:
Marco wrote:
those sort of issues have already been reported to core. The team is aware of that, dugris has incorporated those in a dedicated branch (see revision 997http://xoops.svn.sourceforge.net/viewvc/xoops/?pathrev=997). Herve's 2.0.17 has fixed all of the strongest holes. The core team decided not to add those in the official 2.0.17 (http://sourceforge.net/forum/message.php?msg_id=4471768)
bad.
marco
[size=x-small]Working sites:
XOOPS 2.0.16 PHP 5.2.2, MySQL 5.0.24a-standard-log, Apache/2.0.54 (Unix)
XOOPS 2.2.4, PHP 4.3.10, MySQL 3.23.58, Apache/1.3.33 (Unix)[/size]