安装指南:
步骤1:解压下载的安全补丁;
步骤2:上传文件/html/class/xoopsform/form.php到XOOPSROOT/class/xoopsform/
注意:
1、我们将同时发布2.2.6 RC版,该版本已经包含更全面的解决方案。如果你使用2.2.6RC版,请不要应用该补丁。(译者注:上述xoops版本都是对应英文版系列,xoops 2.2x中文版都需要应用该补丁,直到有更新版本发布。)
2、XOOPS 2.0.x系列并不受该安全漏洞的直接威胁,不过XOOPS 2.0.18RC版已经改进了相关安全措施。
[英文原文:http://www.xoops.org/modules/news/article.php?storyid=4073]
An XSS vulnerability in XOOPS 2.2* was reported by Omer Singer from .
All XOOPS 2.2* users are urged to apply the attached patch.
Implementation Guide:
Step 1: uncompress the package
Step 2: upload the /html/class/xoopsform/form.php file to your XOOPSROOT/class/xoopsform/
Note:
1 XOOPS 2.2.6 RC is released at the same time with a more comprehensive solution. Do NOT apply this patch if you use 2.2.6 RC package instead.
2 XOOPS 2.0* sites are not affected directly, however the relevant improvements have been available in XOOPS 2.0.18 RC.
步骤1:解压下载的安全补丁;
步骤2:上传文件/html/class/xoopsform/form.php到XOOPSROOT/class/xoopsform/
注意:
1、我们将同时发布2.2.6 RC版,该版本已经包含更全面的解决方案。如果你使用2.2.6RC版,请不要应用该补丁。(译者注:上述xoops版本都是对应英文版系列,xoops 2.2x中文版都需要应用该补丁,直到有更新版本发布。)
2、XOOPS 2.0.x系列并不受该安全漏洞的直接威胁,不过XOOPS 2.0.18RC版已经改进了相关安全措施。
[英文原文:http://www.xoops.org/modules/news/article.php?storyid=4073]
An XSS vulnerability in XOOPS 2.2* was reported by Omer Singer from .
All XOOPS 2.2* users are urged to apply the attached patch.
Implementation Guide:
Step 1: uncompress the package
Step 2: upload the /html/class/xoopsform/form.php file to your XOOPSROOT/class/xoopsform/
Note:
1 XOOPS 2.2.6 RC is released at the same time with a more comprehensive solution. Do NOT apply this patch if you use 2.2.6 RC package instead.
2 XOOPS 2.0* sites are not affected directly, however the relevant improvements have been available in XOOPS 2.0.18 RC.