Page 1 of 1

v1.5.5 Security Fix

Posted: 17 Jul 2012, 20:31
by Jason
Bug Fixes
  • Fixed a vulnerability that would allow anyone to change certain settings on any user.
  • Fixed a vulnerability that would allow guest users to see and type in chat rooms.

Files Changed:
arrowchat/admin/includes/admin_init.php
arrowchat/includes/json/send/send_chatroom_create.php
arrowchat/includes/json/send/send_message_chatroom.php
arrowchat/includes/json/send/send_notifications.php
arrowchat/includes/json/send/send_status.php
arrowchat/includes/json/send/send_typing.php
arrowchat/public/chatroom/js/chatroom_core.js

Upgrade Instructions
Re-download v1.5.5. Overwrite only the files above. Trial version has also been updated.