Hi,
JFU/TFU 2.12 are available in the forum:
http://www.tinywebgallery.com/forum/viewforum.php?f=14
You find all details in the posts.
Have fun using JFU/TFU,
Michael
Hi,
On some servers the variable SERVER_NAME is not set properly while PHP_SELF is.
But SERVER_NAME is save agains cross site scripting. So I added some checks to PHP_SELF and this is now as save and therefore I use PHP_SELF now again.
So if you have problems with TWG 1.8.3 – Just update 1.8.3…
Best,
Michael
Dear JFU/TFU/TWG users,
A security company was testing TWG against security problems like cross site scripting and all kind of injections because there are so many different ways to hack a site. Thanks to the researcher Russ McRee who discovered some vulnerabilities and coordinated their disclosure between Secunia and me. TWG 1.8.3 is now the most secure version ever.
Please update to this version as soon as possible. If you have any problems please let me know.
If you use the admininstration in French, Danish or Dutch please update the language files as well.
In this version are also new features like recursive custom config.php, a new user rolle and TFU 2.12 included.
In the forum and the blog I have listed all the new stuff and fixes.
See: http://www.tinywebgallery.com/forum/viewforum.php?f=14
Have fun using TWG,
Michael
Recent Comments