ترقيع ثغرة أمنية في النسخة 3.0.7-pl1

[MathsMak]

?????? ????? ????? ????

?? ??? (20-11-2010) ??????? ?? ???? ?????? 3.0.8 ??????? ??? ?????? ???? ????? ?? ?????? ??????? (3.0.7-pl1)
??? ?????? ?????? ?????? ?? ???????
????? ??????? ???? ????? ??? ?? ?????? ???????? ?????? ???????

???? ????? includes/message_parser.php
???? ??:

كود: تحديد الكل

          // Apply the same size checks on flash files as on images

??? ????:

كود: تحديد الكل

          $in = str_replace(' ', '%20', $in);

          // Make sure $in is a URL.
          if (!preg_match('#^' . get_preg_expression('url') . '$#i', $in) &&
             !preg_match('#^' . get_preg_expression('www_url') . '$#i', $in))
          {
             return '[flash=' . $width . ',' . $height . ']' . $in . '[/flash]';
          }

??? ???? ????? ??? ??? ??????? ?? ???? ????? ??????? ?? ??????? ??????? ?? ?? ??? ?????? ?? ???? ????? ?? ???? ??? ?????? ?????? ?????? ?? ????? ???? ??????? ???? ???? ??????
?????? ?? ??????? ??????? ????? ?????? ?????? ??? ??????? ?? ????? ?????? ??????? ??????? ?? ????? ??????
????:

كود: تحديد الكل

http://yoursite.com/phpbb/check_flash_bbcodes.php

????? ??? ??????

كود: تحديد الكل

Checking post_text on phpbb_posts
No potentially dangerous flash bbcodes found.

Checking message_text on phpbb_privmsgs
No potentially dangerous flash bbcodes found.

Checking user_sig on phpbb_users
No potentially dangerous flash bbcodes found.

Checking forum_desc on phpbb_forums
No potentially dangerous flash bbcodes found.

Checking forum_rules on phpbb_forums
No potentially dangerous flash bbcodes found.

Checking group_desc on phpbb_groups
No potentially dangerous flash bbcodes found.

If potentially dangerous flash bbcodes were found, please reparse the posts using the Support Toolkit (http://www.phpbb.com/support/stk/) and/or file a ticket in the Incident Tracker (http://www.phpbb.com/incidents/).

???? ?? ???? ??????? ???? ? ?? ????? ???? ???

???? ?????????

[Garebooo]

?? ????? ??????? ?????? ??????? ? ???? ???? ???