<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" lang="ja-JP" xml:lang="ja-JP">
<head>
- <!-- $Id: history.html,v 1.6 2006-07-17 20:02:50 kimitake Exp $ -->
- <!-- $NucleusJP: history.html,v 1.5 2006/07/12 07:11:46 kimitake Exp $ -->
+ <!-- $Id: history.html,v 1.7 2006-11-13 00:36:39 kimitake Exp $ -->
+ <!-- $NucleusJP: history.html,v 1.6 2006/07/17 20:02:50 kimitake Exp $ -->
<title>Nucleus - History</title>
<link rel="stylesheet" type="text/css" href="styles/manual.css" />
</head>
</ul>
</li>
<li>
+ <b>Nucleus v3.24 (November 11, 2006)</b>
+ <ul>
+ <li>FIXED: XSS issue (reported by <a href="http://www.jpcert.or.jp/">JPCERT/CC</a>).</li>
+ </ul>
+ </li>
+ <li>
<b>Nucleus v3.23 (May 23, 2006)</b>
<ul>
<li>FIXED: Remote code execution vulnerability (reported by rgod).</li>
*
* @license http://nucleuscms.org/license.txt GNU General Public License
* @copyright Copyright (C) 2002-2006 The Nucleus Group
- * @version $Id: ACTIONS.php,v 1.2 2006-07-20 08:01:52 kimitake Exp $
- * @version $NucleusJP$
+ * @version $Id: ACTIONS.php,v 1.3 2006-11-13 00:36:39 kimitake Exp $
+ * @version $NucleusJP: ACTIONS.php,v 1.2 2006/07/20 08:01:52 kimitake Exp $
*/
class ACTIONS extends BaseActions {
global $blog;
switch($which) {
case 'id':
- echo $blog->getID();
+ echo htmlspecialchars($blog->getID());
break;
case 'url':
- echo $blog->getURL();
+ echo htmlspecialchars($blog->getURL());
break;
case 'name':
- echo $blog->getName();
+ echo htmlspecialchars($blog->getName());
break;
case 'desc':
- echo $blog->getDescription();
+ echo htmlspecialchars($blog->getDescription());
break;
case 'short':
- echo $blog->getShortName();
+ echo htmlspecialchars($blog->getShortName());
break;
}
}
switch($what) {
case 'name':
- echo $memberinfo->getDisplayName();
+ echo htmlspecialchars($memberinfo->getDisplayName());
break;
case 'realname':
- echo $memberinfo->getRealName();
+ echo htmlspecialchars($memberinfo->getRealName());
break;
case 'notes':
- echo $memberinfo->getNotes();
+ echo htmlspecialchars($memberinfo->getNotes());
break;
case 'url':
- echo $memberinfo->getURL();
+ echo htmlspecialchars($memberinfo->getURL());
break;
case 'email':
- echo $memberinfo->getEmail();
+ echo htmlspecialchars($memberinfo->getEmail());
break;
case 'id':
- echo $memberinfo->getID();
- break;
+ echo htmlspecialchars($memberinfo->getID());
+ break;
}
}
*
* @license http://nucleuscms.org/license.txt GNU General Public License
* @copyright Copyright (C) 2002-2006 The Nucleus Group
- * @version $Id: ADMIN.php,v 1.9 2006-08-31 20:58:00 kimitake Exp $
- * @version $NucleusJP: ADMIN.php,v 1.8 2006/07/12 09:18:02 kimitake Exp $
+ * @version $Id: ADMIN.php,v 1.10 2006-11-13 00:36:39 kimitake Exp $
+ * @version $NucleusJP: ADMIN.php,v 1.9 2006/08/31 20:58:00 kimitake Exp $
*/
require_once "showlist.php";
// check if allowed
($member->getID() == $memberid) or $member->isAdmin() or $this->disallow();
- $name = trim(postVar('name'));
- $realname = trim(postVar('realname'));
+ $name = trim(strip_tags(postVar('name')));
+ $realname = trim(strip_tags(postVar('realname')));
$password = postVar('password');
$repeatpassword = postVar('repeatpassword');
- $email = postVar('email');
- $url = postVar('url');
+ $email = strip_tags(postVar('email'));
+ $url = strip_tags(postVar('url'));
// Sometimes user didn't prefix the URL with http://, this cause a malformed URL. Let's fix it.
if (!eregi("^https?://", $url))
$admin = postVar('admin');
$canlogin = postVar('canlogin');
- $notes = postVar('notes');
+ $notes = strip_tags(postVar('notes'));
$deflang = postVar('deflang');
$mem = MEMBER::createFromID($memberid);
$mem->setPassword($password);
}
- if ($newpass)
- $mem->setPassword($password);
-
$oldEmail = $mem->getEmail();
$mem->setRealName($realname);
if ( ( $mem->getID() == $member->getID() )
- && ( $newpass || ( $mem->getDisplayName() != $member->getDisplayName() ) )
+ && ( $mem->getDisplayName() != $member->getDisplayName() )
) {
$mem->newCookieKey();
$member->logout();
<?php }
?>
<div class="foot">
- <a href="http://nucleuscms.org/">Nucleus CMS</a> © 2002-2006 The Nucleus Group
+ <a href="http://nucleuscms.org/">Nucleus CMS</a> © 2002-<?php echo date('Y'); ?> The Nucleus Group
-
<a href="http://nucleuscms.org/donate.php">Donate!</a>
</div>
*
* @license http://nucleuscms.org/license.txt GNU General Public License
* @copyright Copyright (C) 2002-2006 The Nucleus Group
- * @version $Id: showlist.php,v 1.3 2006-07-20 08:01:52 kimitake Exp $
- * @version $NucleusJP$
+ * @version $Id: showlist.php,v 1.4 2006-11-13 00:36:39 kimitake Exp $
+ * @version $NucleusJP: showlist.php,v 1.3 2006/07/20 08:01:52 kimitake Exp $
*/
echo '</label>';
echo '</td>';
echo '<td>', htmlspecialchars($current->mrealname), '</td>';
- echo "<td><a href='$current->murl' tabindex='".$template['tabindex']."'>$current->murl</a></td>";
+ echo "<td><a href='", htmlspecialchars($current->murl), "' tabindex='", $template['tabindex'] , "'>", htmlspecialchars($current->murl), "</a></td>";
echo '<td>', ($current->madmin ? _YES : _NO),'</td>';
echo '<td>', ($current->mcanlogin ? _YES : _NO), '</td>';
echo "<td><a href='index.php?action=memberedit&memberid=$current->mnumber' tabindex='".$template['tabindex']."'>"._LISTS_EDIT."</a></td>";