Version 9.63
1. includes/version_inc.asp - updated version number
2. register.asp - improved performance
3. functions/functions_common.asp - improved performance for the checkFormId function
4. email_topic.asp - improved performance for remote form submission checking
5. email_topic.asp - same as above
6. forum_password_form.asp - improved performance and shortened data saved in session
7. admin_change_admin_username.asp - improved security and fixed XCSRF vulnerability
8. email_messenger.asp - improved performance for remote form submission checking
9. functions/functions_session_data.asp - improved performance and added extra security
10. includes/global_variables_inc.asp - new places the OS type into a variable to reduce calls to the function and reduce the amount of code needed to run
11. forum_topics.asp - improved session performance
12. forum_posts.asp - same as above
13. default.asp - improved security for cookie removal
14. remove_cookies.asp - improved performance and security
15. edit_post_form.asp - improved session handling
16. forum_posts.asp - improved session handling and security
17. forum_topics.asp - improved session handling and security
18. new_poll_form.asp - improved session handling
19. new_post.asp - improved session handling
20. new_reply_form.asp - improved session handling
21. new_topic_form.asp - improved session handling
22. printer_friendly_posts.asp - improved session handling
23. pm_new_message_form.asp - improved session handling
24. pm_delete_message.asp - improved session handling
25. pm_message.asp - improved session handling
26. includes/pm_check_inc.asp - improved session handling
27. includes/admin_header_inc.asp - added XCSRF ID to logout link to prevent users being logged out using a malicious image or link
28. admin_logout.asp - added XCSRF checking and fixed session bug that would attempted to remove non existent session data
29. admin.asp - added extra security for admin area
30. admin_ - all files beginning admin_ have been updated to add extra security
31. pop_up_IP_blocking.asp - improvements to security
32. pop_up_topic_admin.asp - added in extra checks for XCSFR and fixed session bug for deleting polls
33. delete_topic.asp - improvements to security
34. active_topics.asp - same as above
35. pre_approved_topics.asp - same as above
36. search_results_posts.asp - same as above
37. search_results_topics.asp - same as above
38. delete_posts.asp - same as above
39. delete_poll.asp - same as above
40. hide_post.asp - same as above
41. show_post.asp - same as above
42. lock_forum.asp - same as above
43. lock_topic.asp - same as above
44. admin.asp - enhanced security, admin area users must now stay within the same domain to stay logged in to the admin area
45. admin_common.asp - updated to support new enhanced single domain admin area security
46. includes/setup_options_inc.asp - updated to store session data in the database by default now that session performance for databases has been improved
47. functions/functions_common.asp - fixed bug in active users that would sometimes drop active user records that where still valid
48. email_notify.asp - fixed potential security bug in this file
Download:
http://www.mediafire.com/?zd5c2odmmym
Bookmarks