vb.org Archive - Major Additions

DownloadsII 5.1.2 is an immediate security release fixing a severe CSRF security issue. Abusing this issue can lead to the unwanted removal of files, images and comments. So I recommend to update your site as soon as possible.

Next to that some other issues were fixed like PHP warnings when you are running PHP 5.3.

DownloadsII 5.1.2 Changelog

Jelle

Backported CSRF security fix from the vB 4 release
Added permission check for Update Counters
Fixed PHP warnings when running PHP 5.3
Removed the imagecreatefrombmp() function. It doesn't exist.
Added permission check for rating submissions

I'm assuming that on 3.8.x this still works fine with Downloads II Create Thread and Downloads II Upload Rules add-ons?

Megatr0n

04-25-2010 04:36 PM

Jelle, can you confirm which files we have to upload or is it all?

I've made some changes to the hack that's why by editing some of the files.

RS_Jelle

04-25-2010 06:42 PM

Quote:

Originally Posted by KenDude (Post 2027128)

I'm assuming that on 3.8.x this still works fine with Downloads II Create Thread and Downloads II Upload Rules add-ons?

Normally they should. Though the rules add-on isn't an official one.

Quote:

Originally Posted by Megatr0n (Post 2027139)

Jelle, can you confirm which files we have to upload or is it all?

I've made some changes to the hack that's why by editing some of the files.

Search for "actionhash" in downloads.php and the product XML for the CSRF changes, which are the biggest deal. I suggest you to use a diff compare tool (like WinMerge), so you can compare the code of both versions easily.

dr.tawy

04-25-2010 10:42 PM

is there any way to override server side parameters with the stupid rule of maximum 2mb

i tried several times to edit .htaccess

i even talked to the hosting company said" we are offering hosting services not file uploading one so rules are not to be changed"

Any help ?

Black Tiger

04-25-2010 11:02 PM

Maybe you should search this tread a bit next time. This question and kindlike already passed numerous times. A mistake that newbies often make. But people don't like to answer the same thing over and over again.;)

If it does not work with a .htaccess file, try it with a php.ini file with the correct settings in your public_html directory.
If that does not work, you have to ask your hoster and it seems your hoster does not want to cooperate, in that case it's end of story, or change hosting company ofcourse.:)

brettxw

04-26-2010 12:29 AM

If we are upgrading and I upload the new files, will I lose all my settings for my current download section? And have to re add everything?

Nadeemjp

04-26-2010 02:35 AM

hello RS
as soon as i upgraded, the following error is occurring:

Warning: fetch_template() calls should be replaced by the vB_Template class. Template name: downloads_navbar_button in [path]/includes/functions.php on line 3957

any cluie how to remove it?

Black Tiger

04-26-2010 10:35 AM

@brettxw: No ofcourse not, assuming you wil do the right procedure when uploading.
Upload all files to their correct contents, overwriting the old ones.
The import the product and set "overwrite" to "yes". Then all will be upgraded fine and your settings will not be changed.

dr.tawy

04-26-2010 11:54 AM

Quote:

Originally Posted by Black Tiger (Post 2027301)

and maybe you should actually read my post next time

if you have read it you would have understood that i already did all of these options even talked to the hosting company

Black Tiger

04-26-2010 07:57 PM

Quote:

and maybe you should actually read my post next time

Maybe you should actually read your own post again. You did not mention you already searched this thread. And if you did, you should have found the answer because it is in there several times.

Don't be annoyed, but try to learn (also about what the meaning of smileys is). If I wanted to make a snear at you, I would not have also answered your question like I did.

All times are GMT. The time now is 12:41 AM.

Page 415 of 437

415

Show 40 post(s) from this thread on one page

X vBulletin 3.8.12 by vBS Debug Information
Page Generation 0.03940 seconds Memory Usage 1,746KB Queries Executed 10 (?)
More Information
Template Usage: (1)ad_footer_end (1)ad_footer_start (1)ad_header_end (1)ad_header_logo (1)ad_navbar_below (5)bbcode_quote_printable (1)footer (1)gobutton (1)header (1)headinclude (6)option (1)pagenav (1)pagenav_curpage (4)pagenav_pagelink (4)pagenav_pagelinkrel (1)post_thanks_navbar_search (1)printthread (10)printthreadbit (1)spacer_close (1)spacer_open Phrase Groups Available: global postbit showthread	Included Files: ./printthread.php ./global.php ./includes/init.php ./includes/class_core.php ./includes/config.php ./includes/functions.php ./includes/class_hook.php ./includes/modsystem_functions.php ./includes/class_bbcode_alt.php ./includes/class_bbcode.php ./includes/functions_bigthree.php Hooks Called: init_startup init_startup_session_setup_start init_startup_session_setup_complete cache_permissions fetch_threadinfo_query fetch_threadinfo fetch_foruminfo style_fetch cache_templates global_start parse_templates global_setup_complete printthread_start pagenav_page pagenav_complete bbcode_fetch_tags bbcode_create bbcode_parse_start bbcode_parse_complete_precache bbcode_parse_complete printthread_post printthread_complete
Messages: