It's another bug hunt day for PHPFusion. I've recently been informed of three exploits, 2 of them major. members.php can be exploited by minipulating the $sortby variable via the url (fixed). There is a potential cross-site exploit in the $_POST['rating'] variable in ratings_include.php (fixed). Finally, the return of the [IMG] bbcode cross-site exploit in maincore.php, the system can be fooled into believing that a folder with a valid image extension is an image, this can be very serious if an admin were to view a message which contains this exploit. This one has had me studying for hours, it's a pig of a fix, but it's the best I can do. These issues also affects v6.00.2x, you can find the update info in the cvs.
Existing v6.00.300 users can update using 6-00-301up.zip, simply upload the files and click upgrade under system admin. The sourceforge packages have been updated with all of the above fixes.
