6d51cee4c7
as full release. And add updated fckeditor for Geeklog. These updates should fix known security problems, Secunia SA36372. Jul 30, 2009 (1.5.2sr5) ------------ This release addresses the following security issues: - Gerendi Sandor Attila reported an XSS in the forms to email a user and to email a story to a friend. - The "Mail Story to a Friend" function didn't check story permissions, so that it was possible to email a story even if you didn't have the permissions to view it on the site.
21 lines
581 B
Text
21 lines
581 B
Text
$NetBSD: patch-aa,v 1.4 2009/09/13 01:15:11 taca Exp $
|
|
|
|
* Correct interpreter path.
|
|
|
|
--- emailgeeklogstories.orig 2008-12-14 18:57:36.000000000 +0900
|
|
+++ emailgeeklogstories
|
|
@@ -1,4 +1,4 @@
|
|
-#!/usr/local/bin/php -q
|
|
+#!@PREFIX@/bin/php -q
|
|
<?php
|
|
// This code snippet is responsible for emailing Geeklog stories to users
|
|
// for the topics they select.
|
|
@@ -9,7 +9,7 @@
|
|
// flags for this file.
|
|
|
|
// Change this path to point to your lib-common.php file
|
|
-include('/path/to/geeklog/lib-common.php');
|
|
+include('@PREFIX@/@GEEKLOG_PUB@/lib-common.php');
|
|
|
|
COM_emailUserTopics();
|
|
?>
|