Search found 294 matches

by fraenkiman
Mon Feb 10, 2025 11:56 pm
Forum: FlatPress project
Topic: PHP 8.3 and 8.4
Replies: 30
Views: 9843

Re: PHP 8.3 and 8.4

laborix wrote: Wed Feb 05, 2025 8:19 pm ... there were more than 1,800 attacks and the result is great.
:muscle: :tada: :muscle: :tada: :muscle: :tada:
by fraenkiman
Mon Feb 10, 2025 10:53 pm
Forum: Plugin support
Topic: Dynamic fade-in plugin
Replies: 0
Views: 143

Dynamic fade-in plugin

Hello everyone,

dynamic fade-in for a better user experience? Then this way.

With best regards
Frank
by fraenkiman
Mon Feb 10, 2025 10:51 pm
Forum: Plugin support
Topic: NEW Plugin - random-quote
Replies: 2
Views: 1163

Re: NEW Plugin - random-quote

Hello Sean,

welcome aboard. I have tested your plugin. It does what it is supposed to. Thank you very much. I've decided to put your plugin in the wiki.

With best regards
Frank
by fraenkiman
Mon Feb 10, 2025 9:51 pm
Forum: General Support
Topic: Customizing emoticons
Replies: 1
Views: 166

Re: Customizing emoticons

Hello ivi.lovestoblog,

welcome back. Try this older plugin. It uses emoticon png's. However, I would go for the HTML-entity version as it is more resource efficient and works better in RSS feeds.

Best regards
Frank
by fraenkiman
Sun Feb 09, 2025 12:15 pm
Forum: FlatPress project
Topic: PHP 8.3 and 8.4
Replies: 30
Views: 9843

Re: PHP 8.3 and 8.4

Hollo Laborix,

thank you for the third run. I have replaced strtok() with explode().

With best regards
Frank
by fraenkiman
Sat Feb 08, 2025 7:00 pm
Forum: Development and tests
Topic: FlatPress 1.4 "Notturno": Release Candidate 1 released, please help testing
Replies: 3
Views: 3816

Re: FlatPress 1.4 "Notturno": Release Candidate 1 released, please help testing

Hello eagleman,

many thanks for the corrections. I have implemented your changes in the master branch.

Have a restful Sunday
With best regards
Frank
by fraenkiman
Sun Feb 02, 2025 1:57 pm
Forum: FlatPress project
Topic: PHP 8.3 and 8.4
Replies: 30
Views: 9843

Re: PHP 8.3 and 8.4

Hello Laborix,

ready for the third run?

I have implemented the following changes in the FlatPress master branch :
- Added CSRF protection for the comment function
- Added CSRF protection for the contact form
- Email header injection protection
- Removed X-Powered-By header
- Adjusted server HTTP ...
by fraenkiman
Fri Jan 31, 2025 11:56 pm
Forum: FlatPress project
Topic: PHP 8.3 and 8.4
Replies: 30
Views: 9843

Re: PHP 8.3 and 8.4

Hello Laborix,

thank you for the second run.
I will check if we have SQL injection vulnerability in the contact form. I will also check the comments.php for a possible CSFR vulnerability. I have put everything in an issue here .


Server Leaks Information via “X-Powered-By” HTTP Response Header ...
by fraenkiman
Tue Jan 28, 2025 9:57 pm
Forum: FlatPress project
Topic: PHP 8.3 and 8.4
Replies: 30
Views: 9843

Re: PHP 8.3 and 8.4

Hi Laborix,

I have made the affected functions from your comment a bit more robust. You are welcome to send FlatPress 1.4-dev through the penetration parkour again when you get the chance.

With best regards
Frank
by fraenkiman
Sun Jan 26, 2025 4:57 pm
Forum: FlatPress project
Topic: PHP 8.3 and 8.4
Replies: 30
Views: 9843

Re: PHP 8.3 and 8.4

Hi Laborix,

many, many thanks! What I see, we no longer have a problem with setting the server environment variables. I'll go through the errors from the server log and see how to make the affected functions a bit more robust.

Give me a few nights to do this.

Best regards and a good start to the ...