Oh no! Where's the JavaScript?
Your Web browser does not have JavaScript enabled or does not support JavaScript. Please enable JavaScript on your Web browser to properly view this Web site, or upgrade to a Web browser that does support JavaScript.
Sign In
Not a member yet? Click here to register.

PHP-Fusion v6.01.19 upgrade for v6.01.18 Print

We have just been informed about a very serious MySQL injections in the latest version of PHP-Fusion v6, PHP-Fusion v7 is perfectly safe and this injection do not harm any sites running PHP-Fusion v7 only those still using PHP-Fusion v6. The new package includes a fix for the MySQL vulnerability in members_poll_panel.php as described in this thread.

The presently released packages are up to date with the present version of the SVN (1423) and the downloads on SourceForge have been updated.

Upgrading is performed by unzipping the upgrade package, uploading the contents to your webserver and run the upgrade script from Admin Panel -> System Admin -> Upgrade.

PHP-Fusion 6.01.19 Update - for 6.01.18 only (3.1 Kcool.
PHP-Fusion 6.01.19 (2.2 Mcool.

PHP-Fusion v6 is no longer developed and we suggest everyone having a site using PHP-Fusion v6 to upgrade to PHP-Fusion v7 for a better experience and security!

Credits:
Thanks a lot to our users; smokeman, for detecting and reporting on this vulnerability, and slaughter for helping providing a fix for it.
PHP-Fusion v6.01.19 upgrade for v6.01.18