Jamit Software Forum

Jamit Software => Announcements => Topic started by: Adam on February 01, 2010, 11:10:25 pm



Title: Jamit Job Board 3.5.4 released
Post by: Adam on February 01, 2010, 11:10:25 pm
This version hardens your job board security against XSS attacks. Please upgrade.

Feb 2nd, 2010, version 3.5.4

- Addresses possible XSS vulnerabilities. Please update your software to the
latest version. If you are running 3.5.3, you only need to re-upload the
include/functions.php file.

How to upgrade?
The latest zip file can be downloaded form https://www.jamit.com/ipn/ipnm.php
Please unzip and see UPGRADE.txt for further instructions.

What was changed?

include/functions.php - The new code was added to the top of the file. It processes all input coming to the job board to ensure that it is sanitized before being used. The job board also sanitizes the input in various other parts of the system, this change adds another layer on top, as it was reported that some older templates do not escape HTML input correctly.

If you have 3.5.3, you only need to re-upload include/functions.php, otherwise we recommend that you upgrade to 3.5.3


POST UPDATED: v3.5.5 is now available for download - it updates the changes to include a fix that some people experienced when mod_rewrite is enabled. Please see the later post.


Title: Re: Jamit Job Board 3.5.4 released
Post by: Amjad on February 02, 2010, 04:08:43 am
Thanks Adam,
updated