Text only | Text with Images

coppermine-gallery.com/forum

Support => cpg1.4 plugins => cpg1.4.x Support => Older/other versions => cpg1.4 JUpload by etienne_sf => Topic started by: etienne_sf on September 22, 2008, 09:05:21 PM

Title: JUpload release 3.2.4 : security fix [Mandatory]
Post by: etienne_sf on September 22, 2008, 09:05:21 PM
Hi,

  Here is the announce for the 3.2.4 Release.

Security fix, mandatory to install when the PHP configuration parameter magic_quot_gpc is off (see phpinfo) and non trusted users may upload pictures.

The release is available here :
http://forum.coppermine-gallery.net/index.php?action=dlattach;topic=53168.0;attach=14119 (http://forum.coppermine-gallery.net/index.php?action=dlattach;topic=53168.0;attach=14119)
and on my wiki:
http://etienne.lesgauthier.fr/wiki/doku.php?id=jupload_coppermine_download_gb (http://etienne.lesgauthier.fr/wiki/doku.php?id=jupload_coppermine_download_gb)


Release notes for 3.2.4:

Security fix:
- [Mandatory] Remove a possible SQL Injection for users allowed to upload files, when magic_quote_gpc is off on the PHP server.


Etienne
Text only | Text with Images