
March 19 2005 · PHPFusion
XSS vulnerability patch
Pi3cH has reported a cross-site-scripting vulnerability. PHPFusion does not properly validate user-supplied input passed by the log…
By Falk
Read More
Pi3cH has reported a cross-site-scripting vulnerability. PHPFusion does not properly validate user-supplied input passed by the log…

Turkish language files are now available for PHPFusion 5.01 courtesy of BaRzO. There is now also a dedicated Turkish…

Following up from the previous exploit, I have added some more lines to protect the submission system from script & iframe…

Simplified and Traditional Chinese language files are now available for PHPFusion 5.01 courtesy of Mac Lin. You can get…

This is getting rather tedious, it seems every hacker is hell bent on throwing a spanner in the works lately…
For the first time in almost 2 years I've finally been able to start taking a break from development. …

Following up from the recent magic quotes fix, the custom pages & panel editor have been acting strange with slashes disappearing…

FireSt0rm has today alerted me to an exploit in PHPFusion 5.01's javascript sanitising code which can be bypassed…

Confused by the addition of the two new core functions addslash() and stripslash(). These functions are not intended to fully…

I've updated the service pack and Sourceforge which include a few alterations to fusion_core.php (Cookies section) and a…

I've updated my Newsletters infusion for the latest release of PHPFusion 5.01. It also improves mailing success if…

As an on-going effort to improve PHPFusion 5.01's compatibility I've released a general service pack. This…

I was checking over the install script for v5.01 last night and discovered a mistake in the infusion database…

Some of you are having difficulties accessing the infusion & panel editor admin panels. I'd like to point it out…

As with any new release, a few minor glitches managed to find their way into the final release of PHPFusion…