Commit | Line | Data |
---|---|---|
fe69da5f | 1 | - User mail is not working |
2 | ||
3 | - Registration process is not working | |
4 | ||
5 | - Cron scripts are not executed | |
6 | (no automatic logouts, no K generation, ...) | |
7 | ||
dcee7633 | 8 | - fix uploading of files |
fe69da5f | 9 | |
dcee7633 | 10 | - fix ALL sql injections |
fe69da5f | 11 | |
dcee7633 | 12 | - remove absolute paths from all source files (!) (over 50) |
fe69da5f | 13 | |
dcee7633 | 14 | - remove hard-coded kyberia.sk from: |
15 | ( ./inc/eventz/configure_email.inc ) | |
16 | ( ./inc/eventz/delete.inc ) | |
17 | ( ./inc/smarty/node_methodz/modifier.replaceLocalURLs.php ) | |
18 | ( ./inc/replaceLocalURLs.inc ) | |
19 | ( ./nodes.php ) | |
20 | ( ./cron/rssparse.php ) | |
21 | ( ./scripts/contentregexp.php ) (obsolete?) | |
fe69da5f | 22 | Fix https vs http problem (url) |
dcee7633 | 23 | |
24 | - Suspected security holes: | |
25 | ( cron/process-img.sh ) | |
26 | ( sms_payment.php => yes, sqli but is it really used? ) | |
fe69da5f | 27 | ( inc/eventz/upload_data_node.php => Shell injections in .zip handling, .jpg handling, |
dcee7633 | 28 | "strange" filenames like .htacess (to allow listing of folder) |
29 | ||
d48685b8 | 30 | - Refactor directory structure |
2f9b4885 H |
31 | |
32 | - Deprecated PHP features | |
33 | ( Deprecated: Assigning the return value of new by reference is deprecated in /srv/kyberia/wwwroot/nodes.php on line 163 Deprecated: Assigning the return value of new by reference is deprecated in /srv/kyberia/wwwroot/nodes.php on line 184 Deprecated: Assigning the return value of new by reference is deprecated in /srv/kyberia/wwwroot/nodes.php on line 196 Deprecated: Assigning the return value of new by reference is deprecated in /srv/kyberia/wwwroot/nodes.php on line 208 Deprecated: Assigning the return value of new by reference is deprecated in /srv/kyberia/wwwroot/nodes.php on line 220 Deprecated: Assigning the return value of new by reference is deprecated in /srv/kyberia/wwwroot/nodes.php on line 242 ) | |
fe69da5f | 34 | |
35 | - keep fixing XSS | |
36 | ||
37 | - documentation/installation guide (see README) | |
38 | ||
39 | - Clean code => fix uninitialized variables |