v1.5.5 Security Fix
PostPosted: 17 Jul 2012, 13:31
Bug Fixes
Files Changed:
arrowchat/admin/includes/admin_init.php
arrowchat/includes/json/send/send_chatroom_create.php
arrowchat/includes/json/send/send_message_chatroom.php
arrowchat/includes/json/send/send_notifications.php
arrowchat/includes/json/send/send_status.php
arrowchat/includes/json/send/send_typing.php
arrowchat/public/chatroom/js/chatroom_core.js
Upgrade Instructions
Re-download v1.5.5. Overwrite only the files above. Trial version has also been updated.
- Fixed a vulnerability that would allow anyone to change certain settings on any user.
- Fixed a vulnerability that would allow guest users to see and type in chat rooms.
Files Changed:
arrowchat/admin/includes/admin_init.php
arrowchat/includes/json/send/send_chatroom_create.php
arrowchat/includes/json/send/send_message_chatroom.php
arrowchat/includes/json/send/send_notifications.php
arrowchat/includes/json/send/send_status.php
arrowchat/includes/json/send/send_typing.php
arrowchat/public/chatroom/js/chatroom_core.js
Upgrade Instructions
Re-download v1.5.5. Overwrite only the files above. Trial version has also been updated.