phpBB Web Hosting
phpbb web hosting - to secure your phpbb forum it is very important
that you update it every time when new patch is released.
phpBB Group announces the release of phpBB 2.0.13, the "Beware of the
furries" edition for phpbb hosting .
This release addresses two recent security exploits, one of them critical.
They were reported a few days after .12 was released and no one is more
annoyed than us, having to release a new version in such a short period of
Fortunately both fixes are easy and in each case just one line needs to be
The first issue is critical (session handling allowing everyone gaining
administrator rights) and we urge you to fix it on your forums as soon as
if( $sessiondata['autologinid'] == $auto_login_key )
if( $sessiondata['autologinid'] === $auto_login_key )
A second minor issue reported to bugtraq several days ago was the path
disclosure bug in viewtopic.php which got fixed by applying the following
$message = str_replace('\"', '"', substr(preg_replace('#(\>(((?>([^><]+|(?R)))*)\<))#se',
"preg_replace('#\b(" . $highlight_match . ")\b#i', '<span style=\"color:#"
. $theme['fontcolor3'] . "\"><b>\\\\1</b></span>', '\\0')", '>' . $message
. '<'), 1, -1));
$message = str_replace('\"', '"', substr(@preg_replace('#(\>(((?>([^><]+|(?R)))*)\<))#se',
"@preg_replace('#\b(" . $highlight_match . ")\b#i', '<span
style=\"color:#" . $theme['fontcolor3'] . "\"><b>\\\\1</b></span>',
'\\0')", '>' . $message . '<'), 1, -1));
As with all new releases we urge you to upgrade as soon as possible. You
can of course find this download available on our downloads page. As per
usual three packages are available to simplify your upgrade with
Visionwebhosting phpbb web hosting
Cheap phpBB web
What if I plan to upgrade?
HOSTING / Upgrading from these versions is typically quite easy
with Visionwebhosting phpbb web hosting
accounts. First you should rename or copy your existing config.php to a
temporary location. Next upload (see Installation for details if
necessary) the new 2.0 files to the same location as your previous
installation of phpBB 2.0, ie. overwrite the existing files. Next delete
the newly uploaded copy of config.php and replace it with your existing
copy (ie. rename or move back the copy you saved previously).
You should now run update_to_final.php which, depending on your previous
version, will make a number of database changes. You may receive the
occasional "FAILURE" during this procedure; they shouldn't be a cause for
concern unless you see an actual "ERROR", in which case the script will
If you have any other questions please contact our support!
phpBB Web Hosting