Oh no! Where's the JavaScript?
Your Web browser does not have JavaScript enabled or does not support JavaScript. Please enable JavaScript on your Web browser to properly view this Web site, or upgrade to a Web browser that does support JavaScript.
Not a member yet? Click here to register.
Forgot Password?
F
 Falk
5min reading time
October 28 2005
If you prefer to add the fixes manually, here is a complete run-down of what you need to add or change:

1. lostpassword.php

After line 21:

if (isset($email) && isset($account)) {



Add the following line:

if (FUSION_QUERY != "email=".$email."&account=".$account) fallback("index.php");




2. maincore.php

Replace line 398:

]*>#i',"",$text);




With the following:

do {
$thistext = $text;
$text = preg_replace('#]*>#i',"",$text);
} while ($thistext != $text);




3. messages.php

After line 157:

$cnt_messages = count($chk_mark);



Add the following line:

foreach ($chk_mark as $thisnum) { if (!isNum($thisnum)) { fallback("messages.php"); } }




Replace line 162:

$result_where_message_id = "message_id=".$chk_mark[0];




With the following:

$result_where_message_id = "message_id=".(isNum($chk_mark[0]) ? $chk_mark[0] : "0");




After line 227:

} elseif (isset($_POST['btn_delete']) || isset($msg_delete)) { // delete message




Add the following line:

if (!isset($msg_delete) && !isset($chk_mark)) fallback("messages.php");




4. infusions/shoutbox_panel/shoutbox_archive.php AND news.php

Replace the following line:

if (!isset($rowstart)) $rowstart = 0;



With the following:

if (!isset($rowstart) || !isNum($rowstart)) $rowstart = 0;

More on Security
Happy New 2023

To all our National Support Sites, Developers, Co-workers, Users, Supporters and to all our friends, fellow Fusioneers and your families we wish you all a Merry Christmas and a Happy New Year !
December 24 2022 1 minute

We are very happy to announce our latest branch release of Andromeda. Download PHPFusion 9.10.30 here   You can read the initial release notes of Andromeda here
September 01 2022 2 minutes

We are very happy to announce our latest branch release of Andromeda. Download PHPFusion 9.10.20 here   You can read the initial release notes of Andromeda here
February 04 2022 3 minutes

We are very happy to announce our latest release of Tesseract. Download PHPFusion 8.00.100 here
December 15 2021 2 minutes