IPB 2.0 RC1以上可以使用It has come to our attention that a potential vulnerability may exist in "sources/post.php". This affects versions: IPB 2.0.0, IPB 2.0.1 and IPB 2.0.2.
We have updated the main download zip and as the vulnerability only exists in one file we felt that a version increment wasn't required. The encoded trial has been updated too.
To update your IPB 2.x board, simply download the attached zip file, expand and upload "sources/post.php" over the one on your installation.
This completes the security update.
-------------------------------------------------------------------------------
看了下,是cookies加强了过滤。。。直接覆盖此文件就可以了。。
新下载的smartipb 已修复此问题。。
$ibforums->input['qpid'] = preg_replace( "/[^,d]/", "", trim($std->my_getcookie('mqtids')) );
进入下载页面