XOOPS 2.5.5 Final Released
Date 2012/4/16 5:40:00 | Topic: XOOPS
|The XOOPS Development Team is pleased to announce the release of XOOPS 2.5.5 Final. |
This release is focused on fixing open bugs and on updating external libraries to their latest versions:
- phpMailer 5.2.1
- TinyMCE 3.4.9
- jQuery 1.7.2
- jQueryUI 1.8.18
- HTML Purifier 4.4.0
- phpThumb 1.7.11
- jGrowl 1.2.6
Since it also includes a security fix, it is highly recommended to update to this version ASAP!
See the Changelog for more details.
Please post and discuss all issues related to this release in this Forum
We also need help with Translations using Transifex
Any PHP version >= 5.2 (PHP 5.3+ is strongly recommended)
MySQL server 5.0+
Any server supporting the required PHP version (Apache highly recommended)
You can get this release package from the Sourceforge repository.
There are .zip and .gz archives provided.
Installing XOOPS (new installation)
1. Copy the content of the htdocs/ folder where it can be accessed by your server
2. Ensure mainfile.php and uploads/ are writable by the web server
3. For security considerations, you are encouraged to move directories "/xoops_lib" (for XOOPS libraries) and "/xoops_data" (for XOOPS data) out of Document Root, and change the folder names.
4. Ensure that directories:
- mainfile.php and
are writable by the web server
5. Access the folder where you installed the htdocs/ files using your web browser to launch the installation wizard
DOCUMENTATION: Please check out the detailed Installation Guide and the Operations Guide
Installing Protector in XOOPS
We also highly recommend the installation of the PROTECTOR module which will bring additional security protection and logging capabilities to your site.
Upgrading from a previous version
Upgrading from 2.5.4 to 2.5.5 Final:
1. Get the right update package from the sourceforge file repository
2. Overwrite files in XOOPS directory on your server with the content of /htdocs
* make sure that you copy the content of /xoops_lib to whatever directory you keep it on the server now (it should be your current XOOPS_TRUST_PATH directory), then delete the /xoops_lib directory. There can NOT be two directories with the content of /xoops_lib
3. Update the "System" module from the modules administration interface. Other modules, especially "Profile", "PM", and "Protector" are recommended to update as well
Upgrading from previous versions older than 2.5.0 (Full Update):
0. Verify the system requirements, in particular the version of PHP. Backup your XOOPS database and site directory. (There are several ways to do these actions, which are discussed elsewhere.) Turning your site off is optional.
Change the permissions on mainfile.php and /include/license.php to be writable, for example:
File Normal For upgrade
mainfile.php 400 700
/include/license.php 444 777
Get the XOOPS 2.5.5 package from the SourceForge file repository.
1. In the upgrade package folder, move the "upgrade" folder inside the "htdocs" folder, if it's not already there. Remove the install folder from the "htdocs" folder, if it's there. Remove the mainfile.php file from the "htdocs" folder, if it's there.
If you've moved the xoops_data and xoops_lib folders outside your site's root directory, move these folders out of the "htdocs" folder in the upgrade package folder.
2. Delete the /modules/system directory on your current XOOPS site (to get rid of any old unnecessary files).
3. Overwrite the files in the XOOPS directory on your current XOOPS site with the content of "htdocs" folder of the upgrade package. (There are several ways to do this action, which are discussed elsewhere.)
As noted above, if relocated, overwrite the files in your current xoops_data and xoops_lib with the content of those in the upgrade package.
4. If you have Protector previously installed, open the "mainfile.php" file , and remove the Pre-check and Post-check lines (if they exist):
include XOOPS_TRUST_PATH.'/modules/protector/include/precheck.inc.php' ;
include XOOPS_TRUST_PATH.'/modules/protector/include/postcheck.inc.php' ;
5. At your site's address (URL), login as administrator. Access /upgrade/ with a browser, and follow the instructions (and any for updating your XOOPS database). After all updates have been applied (green checkmarks), note the link in the Updater to update the "system" module, and do so.
6. Delete the "upgrade" folder from your site's "htdocs" directory.
7. Update (reload) other modules, especially "Profile", "PM", and "Protector," if necessary.
8. Change permissions on the files noted above back to their normal state.
9. Turn your site back on, if you turned it off earlier.
Debug information display level
Since XOOPS 2.3.1 debug information display level is enabled as a temporary solution for 2.3* to show debug information to different level of users: to all users, to members or to admins only.
The configuration can be set in /xoops_data/configs/xoopsconfig.php
As a default, the display level is set for 2 (Admin only).
Files integrity check
The full XOOPS package is released with a script able to check if all the system files have been correctly uploaded to the server. To use it, follow these instructions:
1. Upload the checksum.php and checksum.md5 files located in the XOOPS package root to your XOOPS server folder (putting them next to mainfile.php).
2. Execute checksum.php with your browser
3. If necessary, re-upload the missing or corrupted system files
4. Remove checksum.php and checksum.md5 from your server
This release contains only the "system-related modules". You are invited to browse the XOOPS modules repository to if you need additional functionality. Note: as a new repository is being built, the current repository is not up-to-date, PLEASE VISIT INDIVIDUAL DEVELOPERS' WEBSITES TO MAKE SURE YOU ARE USING LATEST VERSION OF MODULES.
How to contribute
Patch and enhancement:http://sourceforge.net/tracker/?group_id=41586&atid=430842
We would like to thank all developers who contributed fixes to this release (Mage, ForMuss, Trabis, Wishcraft, Mamba, DCrussader, XavierS, Cesag, Timgno, Culex), and all our users who helped us with testing.
XOOPS Development Team
April 15th, 2012
Change Log for XOOPS 2.5.5 Final
(for previous versions see here:
- XOOPS 2.5.5 RC
- XOOPS 2.5.5 Beta)
- XSS (Cross Site Scripting) vulnerability in PM module and tinymce (High-Tech Bridge Security Research Lab/trabis)
- Templates Manager does not handle single quotes correctly (trabis)
- $xoTheme->addScript('', '', 'content here'); causes duplicate CDATA on cached pages (wishcraft/trabis)
- System admin maintenance table names are incorrect if db_prefix length is not 4 (trabis)
- System admin users advance search displays wrong results when using 'contains' or 'equal' in some fields (trabis)
- System admin users pagination not working correctly for some fields (trabis)
- System admin users blank page when site as many users (trabis)
- /class/object.php deprecated message, should be /class/xoopsobject.php (mamba/trabis)
- /class/module.php deprecated message, should be /class/xoopsmodule.php (mamba)
- /class/user.php deprecated message, should be /class/xoopsuser.php (mamba)
- ID: 3443381 Images stored in database not given correctly in edit mode (mage)
- ID: 3201929 Change upper limit for Banner impressions (mamba/mage)
- ID: 3432275 html structure (kris_fr/mage)
- ID: 3461539 Incorrect value for setOrder() in modulesadmin/main.php (mage)
- ID: 3469896 When deleting client, it doesn't delete finished banners (mamba/mage)
- ID: 3442270 Date format and Xoops 2.5.4 (cesag/formuss)
- ID: 3494895 When changing the # of visible entries in Protector, it goes to Admin (jcweb/mamba)
- ID: 3494894 Calendar shows 40 days (peekay/mage)
- ID: 3494896 Image Manager category creation restrictions (voltan/mage)
- ID: 3494893 PM Messages deleted from Saved box (Danielw42/mage)
- ID: 3501897 Protector errors (cesag/XavierS)
- ID: 3511204 TinyEditor only loading in the 'Scoop' part of the News module (peekay/XavierS)
- ID: 3511205 Bug in fresh install in page_configsave.php (XavierS)
- preventing division by zero in pagenav.php (timgno)
- ID: 3466534 tooltip "$ not defined" fix (culex)
- ID: 3513787 wrong cookie_domain (arion92fr)
- ID: 3518291 Fix of variables assigned by reference in formelementtray
- problem in formtextdateselect (wishcraft)
- HTML Purifier to 4.4.0 (mamba)
- TinyMCE to 3.4.9 (mamba)
- jQuery to 1.72 (mamba)
- jQueryUI to version 1.8.18 (mamba)
- phpThumb to 1.7.11 (mamba)
- jGrowl to 1.2.6 (mowaffaq/mamba)
- replacing "msnbot" with "bingbot" in Protector (mamba)
- Add key 'uid' on 'groups_users_link' table to allow joining 'users' table with better performance (trabis)
- Add Comments, Templates, and Uninstall links to Module's Admin (mamba)
- added define("_AM_MODULEADMIN_HOME", "Home");
- added define("_AM_MODULEADMIN_DASHBOARD", "Dashboard");
- added define("_AM_MODULEADMIN_ABOUT", "About");
- added define("_AM_MODULEADMIN_PERMISSIONS", "Permissions");
- added define("_AM_MODULEADMIN_ABOUT_RELEASEDATE","Released: ");
- added define("_AM_MODULEADMIN_ABOUT_AUTHOR","Author: ");
- added define("_AM_MODULEADMIN_ABOUT_CREDITS","Credits: ");
- added define("_AM_MODULEADMIN_ABOUT_LICENSE","License: ");
- added define("_AM_MODULEADMIN_ABOUT_AUTHOR_NAME","Author name: ");
- added define("_AM_MODULEADMIN_ABOUT_AUTHOR_INFO","Author Info");
- added define("_AM_MODULEADMIN_ADMIN_FOOTER", "");
- added define("_CAL_FORMAT","Y-m-d");
- added define($constpref."_ADMINHOME","Home");
- added define($constpref."_ADMINABOUT","About");
- added define($constpref.'_STOPFORUMSPAM_ACTION','Stop Forum Spam');
- added define($constpref.'_STOPFORUMSPAM_ACTIONDSC','Checks POST data against spammers registered on www.stopforumspam.com database. Requires php CURL lib.');
- added define( "FILTER_FUNCTIONS", "Filter functions");
- added define('_DBDATESTRING', 'Y-m-d');
- added define('_DBTIMESTRING', 'H:i:s');
- added define('_DBTIMESTAMPSTRING', 'Y-m-d H:i:s');
- added define('_PM_READ', 'Already Read');
- added define("_AM_SYSTEM_UNINSTALL","Uninstall");