Thème Xoops City
from XOOPS Project
(2009/1/31 8:10)
|
Template : Mor.pho.GEN.e.sis 3 columns, 960px 3 globalnav Xoops 2.18 , 2.3 Are provided with the theme xoops city vector graphics files svg (Inkscape) open source software Demo Downloads http://www.saboum.com
|
Education Theme
from XOOPS Project
(2009/1/31 4:20)
|
hello, i offer you today my new theme : education. It's available in english and arabic (visit www.arabxoops.com to download the arabic version) -Width 920px - 3 columns - Easily editable CSS included PSD, Fonts and the theme You can download it by clicking here Hope you will like it. and below a screen shot
|
Olédrion 2.1, the e-Commerce module for Xoops by Instant Zero
from XOOPS Project
(2009/1/29 4:20)
|
Our good friends at Instant-Zero announced a new version of their e-Commerce module - Olédrion ( read here )
|
Free Xoops Theme Sinnedesign-009-Green
from XOOPS Project
(2009/1/27 1:20)
|
Dear Xoopser, here is my next new design sinnedesign-009-green . The Theme is a new green color xoops theme. Here you can find the Download Xoops Theme Sinnedesign-009-Green for free. Regards and have a nice day your Sinnedesign
|
I'amFree! Theme
from XOOPS Project
(2009/1/26 13:40)
|
Download Theme in action !
|
Big Umbrella Anti-SQL-Injection (4)
from PEAK XOOPS
(2009/1/23 5:47)
|
The DBLayer Trapping anti-SQL-Injection of Protector-3.30 with XOOPS2 raises aSQL Injectionalert at updating preferences including doublequatation().This wrong detection is caused by the wrong way to escape SQL.
class/database/mysqldatabase.php
[code]
function quoteString($str)
{
$str ='.str_replace('\\','', addslashes($str)).';return $str;}[/code]Only XOOPS2 and XCL2.1 have such a wrong escaping method.This method should be corrected like:[code]function quoteString($str){$str ='.str_replace('\\','', addslashes($str)).';$str ='.mysql_real_escape_string($str).';return $str;}[/code]On the other hand, both ImpressCMS and XOOPS-2.3.2 have a right method.However this is just a problem of the XOOPS Cube project, there can be some modules/hacks escaping SQLs like this.
Then I have to modify the logic of theDBLayer Trapping anti-SQL-Injection.(A) A request including'oris found in a SQL as is (without escaping)(B) All body of the request stays in single string of the SQL (not ...
|
Big Umbrella Anti-SQL-Injection (4)
from PEAK XOOPS
(2009/1/23 5:47)
|
The DBLayer Trapping anti-SQL-Injection of Protector-3.30 with XOOPS2 raises a"SQL Injection"alert at updating preferences including doublequatation(").This wrong detection is caused by the wrong way to escape SQL.
class/database/mysqldatabase.php
[code]
function quoteString($str)
{
$str ="'".str_replace('\\"','"', addslashes($str))."'";return $str;}[/code]Only XOOPS2 and XCL2.1 have such a wrong escaping method.This method should be corrected like:[code]function quoteString($str){$str ="'".str_replace('\\"','"', addslashes($str))."'";$str ="'".mysql_real_escape_string($str)."'";return $str;}[/code]On the other hand, both ImpressCMS and XOOPS-2.3.2 have a right method.However this is just a problem of the XOOPS Cube project, there can be some modules/hacks escaping SQLs like this.
Then I have to modify the logic of the"DBLayer Trapping anti-SQL-Injection".(A) A request including'or"is found in a SQL as is (without escaping)(B) All body of the request stays in single ...
|
Free Xoops Theme Sinnedesign-001-blue
from XOOPS Project
(2009/1/22 10:10)
|
Dear Xoopser, I want to present you my next new design– variant sinnedesign-001-blue . The Theme is a blue color variant from the xoops theme sinnedesign-001-red . From here you can Download Xoops Theme Sinnedesign-001-Blue . I hope you have much fun with my Theme. Your Sinnedesign
|
neon_blue theme by xoops-theme.com
from XOOPS Project
(2009/1/22 9:40)
|
Xoops-theme.com is happy to share with you the new neon_blue theme 3-columns Header PSD included visit xoops-theme.com for download and demo
|
VideoTube v1.84 Now Available From CVD
from XOOPS Project
(2009/1/18 8:10)
|
Video Tube v1.84 is an XOOPS module providing the ability to search, embed and manage videos on your site. Search, preview and auto-fill submission offered for YouTube, DailyMotion, MetaCafe and blip.tv plus a manual submission form for all other video services that offer video embedding. This is a beta release intended to address some of the feature requests we have received. Release contains 3 bug fixes and 6 new features/enhancements. French translation language files have been added. Video reporting and recommend video are among the new features. Bug fix remove mouse position coordinates display at bottom of Video Preview window Bug fix add language support to videohelp.php file Bug fix typo in javascript code causing Back button not to work in Search YouTube display results screens Remove the annoying"minimum of 2 videos required"message Add ability to display a single video Add"Please Select A Category"display message when no videos can be found in the current catego ...
|