X-Git-Url: http://git.harvie.cz/?a=blobdiff_plain;f=doc%2FTODO;h=ddbef0f56af88ff1e47ded187048c794e1b55c97;hb=1675d71fe33f43626f7fbe6f82ee628d1e68bb14;hp=6dcc3745b898c71f91205d911eb989ac3e7b7e53;hpb=445972a1965e441eaff524168f6bac0bdd5b9030;p=mirrors%2FKyberia-bloodline.git

diff --git a/doc/TODO b/doc/TODO
index 6dcc374..ddbef0f 100644
--- a/doc/TODO
+++ b/doc/TODO
@@ -7,7 +7,7 @@
 - User mail -> can't delete the mails...
   Anyway move whole mail handling out of nodes.php (?)
 
-- SQL injections (many fixed, but some should be still there)
+- SQL injections (many fixed, but some are still there)
 
 - remove absolute paths from all source files (!)
 - convert to some more inteligent path system... eg.:
@@ -29,7 +29,7 @@
 - Uploading user images works, but resizing? 
 
 - Suspected security holes:
-  ( cron/process-img.sh )
+  ( ./inc/smarty/node_methodz/function.fetch.php) (read local files?)
   ( ./inc/eventz/spamuj_ubik.inc )
   ( ./inc/eventz/upload_own_template.inc ) (is even needed?)