Co nowego w phpBB 3.2.8?
Co nowego w phpBB 3.2.8?
Czy w phpBB 3.2.7 były błędy bezpieczeństwa
Re: Co nowego w phpBB 3.2.8?
Tak, były. Opisane jest w dokumentacji phpBB + notka z wydania - https://www.phpbb.com/community/viewtop ... &t=2523271
Bug
[PHPBB3-15467] - Permission settings do not take affect when set using All YES/NO/NEVER
[PHPBB3-16123] - PHP error (Array to string conversion) on new user registration if email address is banned and " Reason shown to the banned" is empty
[PHPBB3-16136] - Missing word in 'AUTH_PROVIDER_OAUTH_ERROR_ALREADY_LINKED'
Improvement
[PHPBB3-16134] - Exclude group leaders on group member purge
Security Issue
[SECURITY-243] - CSS injection via BBCode tag
[SECURITY-244] - Missing form token check when handling attachments
[SECURITY-246] - Missing form token check when managing BBCodes
Hardening
[SECURITY-247] - Disable MySQLi local infile to prevent local file inclusion
Bug
[PHPBB3-15467] - Permission settings do not take affect when set using All YES/NO/NEVER
[PHPBB3-16123] - PHP error (Array to string conversion) on new user registration if email address is banned and " Reason shown to the banned" is empty
[PHPBB3-16136] - Missing word in 'AUTH_PROVIDER_OAUTH_ERROR_ALREADY_LINKED'
Improvement
[PHPBB3-16134] - Exclude group leaders on group member purge
Security Issue
[SECURITY-243] - CSS injection via BBCode tag
[SECURITY-244] - Missing form token check when handling attachments
[SECURITY-246] - Missing form token check when managing BBCodes
Hardening
[SECURITY-247] - Disable MySQLi local infile to prevent local file inclusion
