Date: December 31st 2007


Hello,

I've just posted SuperCali version 1.0.4 which fixes a security vulnerability in the show_event.php file. You can visit:

http://supercali.inforest.com/downloads.php

and download the patched file. The archives include new versions of add_event.php and edit_event.php which are for users who have had issues with the add_slashes code of previous versions.

Instead of downloading, you can change line 28 of your show_event.php file from:

if (!$_REQUEST["id"]) {

to

if ((!$_REQUEST["id"]) or (!ctype_digit($_REQUEST["id"]))) {

Thanks,

Dana Hutchins
Inforest Communications
http://supercali.inforest.com/

<< Previous: SuperCali Version 1.0.3 Released

| Archive Index |

Next: SuperCali 1.0.5 Released >>

(archive rss , atom )

this list's archives:

Release annoucements for the SuperCali PHP Event Calendar script.

Subscribe/Unsubscribe on SuperCali PHP Event Calendar Announcements

* Required

Powered by Dada Mail 3.0.0
Copyright © 1999-2008, Simoni Creative.