46
Feedback & Suggestions / Re: 4images 1.7.11 - Feedback
« on: July 20, 2012, 06:15:41 PM »Jetzt muss die Community sich auch noch selber darum kümmern .,.,.,.
Ja, auch mal geben, nicht nur nehmen.
Danke crazymodder!
4images Forum & Community
The forum for all 4images gallery administrators
News:
Check the new Tutorial subforum with helpfull guides and tutorials for modifications and tweaks.
Show Posts
This section allows you to view all posts made by this member. Note that you can only see posts made in areas you currently have access to.
Ja, auch mal geben, nicht nur nehmen.
Danke crazymodder!
47
News & Announcements / Re: 4images 1.7.11
« on: July 06, 2012, 03:15:35 PM »
=========================================================
ChangeLog Version 1.7.11
=========================================================
- [1.7 - 1.7.10] Security fix for XSS issue in admin/categories.php
- [1.7 - 1.7.10] Security fix for sql injection in admin/categories.php
- [1.7 - 1.7.10] Security fix for open redirect vulnerability in admin/index.php
- [1.7 - 1.7.10] Security fix for XSS issue
- Fixed auto-login in sessions.php
- Fixed email notification to user after activation by admin (http://www.4homepages.de/forum/index.php?topic=29623.0)
- Fixed sql error if apostrophe in name of image (http://www.4homepages.de/forum/index.php?topic=29950.0)
- Changed DB default settings from TYPE to ENGINE (http://www.4homepages.de/forum/index.php?topic=29627.0)
- template with 960px width used as default
Geänderte Dateien / Changed Files:
---------------------------------------
details.php
rss.php
admin/categories.php
admin/index.php
admin/users.php
data/database/default/mysql_default.sql
includes/db_mysql.php
includes/functions.php
includes/search_utils.php
includes/sessions.php
ChangeLog Version 1.7.11
=========================================================
- [1.7 - 1.7.10] Security fix for XSS issue in admin/categories.php
- [1.7 - 1.7.10] Security fix for sql injection in admin/categories.php
- [1.7 - 1.7.10] Security fix for open redirect vulnerability in admin/index.php
- [1.7 - 1.7.10] Security fix for XSS issue
- Fixed auto-login in sessions.php
- Fixed email notification to user after activation by admin (http://www.4homepages.de/forum/index.php?topic=29623.0)
- Fixed sql error if apostrophe in name of image (http://www.4homepages.de/forum/index.php?topic=29950.0)
- Changed DB default settings from TYPE to ENGINE (http://www.4homepages.de/forum/index.php?topic=29627.0)
- template with 960px width used as default
Geänderte Dateien / Changed Files:
---------------------------------------
details.php
rss.php
admin/categories.php
admin/index.php
admin/users.php
data/database/default/mysql_default.sql
includes/db_mysql.php
includes/functions.php
includes/search_utils.php
includes/sessions.php
48
Feedback & Suggestions / 4images 1.7.11 - Feedback
« on: July 06, 2012, 03:06:34 PM »
Bitte nutzt diesen Thread für Feedback, Kommentare und Anregungen zum 4images 1.7.11 Release.
Für Bug Reports und Troubleshooting bitte dieses Forum nutzen.
Please use this thread for feedback and comments about the 4images 1.7.11 release.
For bug reporting and troubleshooting please use this forum.
Für Bug Reports und Troubleshooting bitte dieses Forum nutzen.
Please use this thread for feedback and comments about the 4images 1.7.11 release.
For bug reporting and troubleshooting please use this forum.
49
News & Announcements / 4images 1.7.11
« on: July 06, 2012, 03:05:46 PM »
Die neue Version 4images 1.7.11 wurde veröffentlicht. Das Release bringt Detailverbesserungen und behebt bugs und sicherheitsrelevante Fehler.Wir empfehlen allen Nutzern ein Update auf die aktuelle Version. Alle Änderungen und Features sind in der Datei "docs/Changelog.txt" aufgelistet.
The new version 4images 1.7.11 has been released. This release comes with some improvements, bugfixes and security fixes.We recommend all users to update to the current version. All changes and features are listed in "docs/Changelog.txt".
Download:
http://www.4homepages.de/4images/download.php
Demo:
http://www.4homepages.de/4images/demo.php
Für Feedback zur 4images 1.7.11 Version bitte diesen Thread nutzen.
Please use this thread for feedback about the 4images 1.7.11 version.
50
Templates & Styles (Releases & Support) / Re: [Template] Pukhtoons by Moxet Khan
« on: July 04, 2012, 06:29:37 PM »
Superb!
51
Templates & Styles (Releases & Support) / Re: Sites with 4images templates to download
« on: July 04, 2012, 06:01:37 PM »
HI chamkani,
great - thank you!
great - thank you!
52
Discussion & Troubleshooting / Re: Problem Photos link on Facebook
« on: May 30, 2012, 11:43:33 AM »
You can debug your site for facebook here:
https://developers.facebook.com/tools/debug
https://developers.facebook.com/tools/debug
53
Chit Chat / Re: einstellungen von diesem forum
« on: May 21, 2012, 09:27:49 AM »
Hallo limits,
hier kannst Du die Infos eintragen:
http://www.4homepages.de/forum/index.php?action=profile;u=40595;sa=forumProfile
Was passiert wenn du auf den Link klickst.
Bez. Spam-Protection haben wir am 8. Mai auf deine E-Mail geantwortet.
hier kannst Du die Infos eintragen:
http://www.4homepages.de/forum/index.php?action=profile;u=40595;sa=forumProfile
Was passiert wenn du auf den Link klickst.
Bez. Spam-Protection haben wir am 8. Mai auf deine E-Mail geantwortet.
54
Chit Chat / Re: 4images Forum, oft sehr langsam im Internet
« on: May 08, 2012, 08:51:47 AM »
4homepages.de now on new server. Enjoy!
55
Chit Chat / Re: 4images Forum, oft sehr langsam im Internet
« on: May 07, 2012, 05:57:38 PM »
Ja, wir suchen mit dem Hoster gerade nach einer Lösung.
Wir hoffen dass morgen wieder alles in gewohnter Geschwindigkeit läuft.
Wir hoffen dass morgen wieder alles in gewohnter Geschwindigkeit läuft.
56
Feedback & Suggestions / Re: 4images 1.7.10 - Feedback
« on: April 13, 2012, 11:56:24 AM »
Ja, so wie Andy es sagt.
57
Bug Fixes & Patches / [1.7 - 1.7.10] Security fix for XSS issue in details.php
« on: March 19, 2012, 05:46:51 PM »
A cross site scripting vulnerability in 4images 1.7 - 1.7.10 has been found.
To fix this:
In details.php
find
$meta_keywords = !empty($image_row['image_keywords']) ? implode(", ", explode(",", $image_row['image_keywords'])) : "";
$meta_description = !empty($image_row['image_description']) ? strip_tags($image_row['image_description']) . ". " : "";
and replace it with
$meta_keywords = !empty($image_row['image_keywords']) ? strip_tags(implode(", ", explode(",", $image_row['image_keywords']))) : "";
$meta_description = !empty($image_row['image_description']) ? strip_tags($image_row['image_description']) . ". " : "";
and in rss.php
find 2 x
$text = format_text(trim($text), 1, 0, 1);
and replace it both times with
$text = format_text(trim($text), 2, 0, 1);
To fix this:
In details.php
find
$meta_keywords = !empty($image_row['image_keywords']) ? implode(", ", explode(",", $image_row['image_keywords'])) : "";
$meta_description = !empty($image_row['image_description']) ? strip_tags($image_row['image_description']) . ". " : "";
and replace it with
$meta_keywords = !empty($image_row['image_keywords']) ? strip_tags(implode(", ", explode(",", $image_row['image_keywords']))) : "";
$meta_description = !empty($image_row['image_description']) ? strip_tags($image_row['image_description']) . ". " : "";
and in rss.php
find 2 x
$text = format_text(trim($text), 1, 0, 1);
and replace it both times with
$text = format_text(trim($text), 2, 0, 1);
58
Bug Fixes & Patches / [1.7 - 1.7.10] Security fix for open redirect vulnerability in admin/index.php
« on: March 19, 2012, 02:50:08 PM »
A open redirect vulnerability in the 4images admin panel 1.7 - 1.7.10 has been found.
To fix this:
In admin/index.php
find
if ($redirect != "") {
show_admin_header("<meta http-equiv=\"Refresh\" content=\"0; URL=".$site_sess->url($redirect)."\">");
echo "<p><a href=\"".$site_sess->url($redirect)."\">".$lang['admin_login_redirect']."</a></p>";
show_admin_footer();
exit;
and replace it with
if ($redirect != "") {
if (strpos($redirect, '://') === false) {
show_admin_header("<meta http-equiv=\"Refresh\" content=\"0; URL=".$site_sess->url($redirect)."\">");
echo "<p><a href=\"".$site_sess->url($redirect)."\">".$lang['admin_login_redirect']."</a></p>";
show_admin_footer();
} else {
redirect('home.php');
}
exit;
To fix this:
In admin/index.php
find
if ($redirect != "") {
show_admin_header("<meta http-equiv=\"Refresh\" content=\"0; URL=".$site_sess->url($redirect)."\">");
echo "<p><a href=\"".$site_sess->url($redirect)."\">".$lang['admin_login_redirect']."</a></p>";
show_admin_footer();
exit;
and replace it with
if ($redirect != "") {
if (strpos($redirect, '://') === false) {
show_admin_header("<meta http-equiv=\"Refresh\" content=\"0; URL=".$site_sess->url($redirect)."\">");
echo "<p><a href=\"".$site_sess->url($redirect)."\">".$lang['admin_login_redirect']."</a></p>";
show_admin_footer();
} else {
redirect('home.php');
}
exit;
59
Bug Fixes & Patches / [1.7 - 1.7.10] Security fix for XSS and sql injection in admin/categories.php
« on: March 19, 2012, 02:40:19 PM »
A cross site scripting vulnerability and possible sql injection in the 4images admin panel 1.7 - 1.7.10 has been found.
To fix this:
In admin/categories.php
find
$cat_parent_id = (isset($HTTP_GET_VARS['cat_parent_id'])) ? $HTTP_GET_VARS['cat_parent_id'] : 0;
and replace it with
$cat_parent_id = (isset($HTTP_GET_VARS['cat_parent_id'])) ? intval($HTTP_GET_VARS['cat_parent_id']) : 0;
To fix this:
In admin/categories.php
find
$cat_parent_id = (isset($HTTP_GET_VARS['cat_parent_id'])) ? $HTTP_GET_VARS['cat_parent_id'] : 0;
and replace it with
$cat_parent_id = (isset($HTTP_GET_VARS['cat_parent_id'])) ? intval($HTTP_GET_VARS['cat_parent_id']) : 0;