Simple Machines Forum

Simple Machines Forum

Simple Machines Forum ist eine kostenlose Foren-Software und eine Weiterentwicklung von YaBBSE (2003).

Installation mit einem Klick Simple Machines Forum

Installation mit einem Klick

Einfache Aktualisierung Simple Machines Forum

Einfache Aktualisierung

Speichern und wiederherstellen Simple Machines Forum

Speichern und wiederherstellen

Information

Anwendung
Foren
Kategorie
Community-Software
Laufende Version
2.0.11
Letzte Aktualisierung
23 September 2015
Sprachen
Deutsch + 41 andere

Systemanforderungen

Grösse der Installation
22 MB
Datenbank
mysql
Lizenz
kostenfrei
Übersicht
Was gibt es Neues?

2.0.11

(Sicherheitsupdate)
23 September 2015 - 22MBThis patch is a security release, which focuses on fixing a minor security vulnerability reported in the software, therefore, it is important that you install this patch in a timely manner.
Lesen Sie mehr: http://www.simplemachines.org/community/index.php?topic=539888.0

2.0.10

(Nachtrag 1)
29 April 2015 - 22MBApplications:
  • Update: Fixed an issue which could prevent the update process from completing successfully. Updates affected by this issue can be re-started from the UI.

2.0.10


25 April 2015 - 22MB
  • The instructions on ManagePaid page need to be updated
  • PayPal emails are case insensitive
  • Long standing problem with ManageNews and PostgreSQL
  • Long standing problem with Smiley sets and PostgreSQL
  • Errors show in log when handling certain tar.gz packages
  • Forum Maintenance - Topics fails if header is collapsed
  • Fix for unsupported UTF8mb4 characters
  • SSI.php doesn't handle "hide results until user has voted" properly
  • Sanitize package redirects
  • Can't use WYSIWYG editor in Pale Moon browser
  • Search dialogue can overflow inappropriately
  • Excessive line in ManageServer.php in the patch upgrade from 2.0.8
  • HTML tag broken in 2.0.9 install package
  • Wrong link in ManageAttachments
  • Error suppression missing in Subs-Package
  • XML post preview was broken in 2.0.9
  • Chrome doesn't like opacity for the news fader anymore
  • Add additional emails in Paid Subscriptions settings for PayPal business accounts.

Lesen Sie mehr: http://www.simplemachines.org/community/index.php?topic=535828.0

2.0.9

(Sicherheitsupdate)
3 Oktober 2014 - 22MB
  • SMF tries to stick ORDER BY NULL onto INSERT IGNORE queries containing sub-selects with a GROUP BY statement, causing a database error (Reported by guest)
  • "Show Results" button always shown for polls as long as you can vote in them (Reported by Chainy)
  • Multi-select boxes for settings were broken when no value had been selected (Reported by Suki)
  • Some mail providers screw up the activation link (Reported by NanoSector)
  • PHP 5.4 changes default charset to UTF-8, which can cause problems with search results and PM notification emails (Reported by fun4us)
  • Make sure opcode cache gets cleared when regular cache does
  • Log pruning should only delete closed mod reports, not open ones
  • Fix layout issue with manage permissions page (Reported by Antes)
  • Adjust image check to not fail on "cellTextIsHtml", unless paranoid... (Reported by Arantor)
  • Sanitize all package XML to prevent any XSS attacks (Reported by Arantor)
  • Add session check when previewing posts to prevent XSS via [html] from forged forms (Reported by emanuele)
  • Sanitize maintenance mode title to prevent XSS attacks if HTML is used in it (Reported by guest)

Lesen Sie mehr: http://www.simplemachines.org/community/index.php?topic=528448.0

Zeige mehr Versionen

2.0.8


18 Juni 2014 - 22MB
  • Nobbc should work across multiple lines
  • Package manager shouldn't fail when only 32M of memory is available
  • Quoting posts with smileys in, in the WYSIWYG editor, shouldn't spout nonsense into the editor (in the way certain versions of 2.0.7 did)
  • Td tags with a colspan should still function and not consume vast amounts of memory
  • Using lots of html bbcode tags when not an admin should not consume vast amounts of memory
  • Using queryless URLs, and/or when the PHPSESSID is present, should not consume vast amounts of memory
  • Breaking long words should function without consuming lots of memory
  • Adding posts with many smileys or bbc with specific parameter types (many times especially) should not consume vast amounts of memory, e.g. [acronym=definition]term[/acronym]
  • Emails should work without consuming vast amounts of memory
  • Time tags should work without consuming vast amounts of memory
  • The copyright year should be updated
  • Board order should always work correctly (if at a performance hit, a la the mod Arantor prepared)
  • The memberlist search feature could, in some cases, throw a database error if no valid fields were specified

Lesen Sie mehr: http://www.simplemachines.org/community/index.php?topic=524016.0

2.0.7

(Nachtrag 1)
22 Januar 2014 - 22MBApplications:
  • Install and Update: Added revisions published by Simple Machines Forum.

2.0.7


21 Januar 2014 - 22MB
  • PHP 5.5 compatibility fixes merged in. (Thanks to all who contributed but especially SleePy and Spuds)
  • Trim the username if oversized when logging in. (Thanks to TMcomputering for the report)
  • Check that group inheritance is actually going to be viable before trying to do further inquiry. (Thanks to tfs for the report)
  • Made sure some of the calendar holidays are corrected when previously incorrect.
  • Don't let the prune reports function prune open, or for that matter, ignored, reports. (Reported by Kimmie)
  • If an uploaded file somehow has an image size but isn't really an image, don't try to treat it as an image.
  • Make file cache somewhat less fragile.
  • ssi_fetchPosts didn't honour overriding permissions. (Thanks to IchBin for a fix)
  • Privacy and original sending time were not kept in the mail queue in the event of sending failure.
  • Wrong variable used in the mail queue handling (Thanks to Nao for originally finding the bug)
  • Themes with spaces in could break the editor handling. (Thanks to akyhne for the report and akabugeyes for a suggested fix)
  • Made the anti-XSS header a little less picky.
  • FIND_IN_SET wasn't always properly set up for PostgreSQL use.
  • Multiple installed themes with variants wouldn't all be able to be selected properly.
  • Fields that are regex-validated couldn't be left empty (thanks HappyBits and emanuele)
  • Fixing legacy TYPE=HEAP (thanks heusdens for the report)

Lesen Sie mehr: http://www.simplemachines.org/community/index.php?topic=517205.0

2.0.6

(Sicherheitsupdate)
22 Oktober 2013 - 22MBCritical security issues have been identified and are fixed with this update, therefore it is recommended to make sure you update your forums immediately to ensure your community is safe. A few other minor bugs have also been fixed.
  • Added some headers to help protect against clickjacking (thanks Jakob Lell for the report)
  • Invalid avatars were not always properly cleaned up (thanks chaoztc for the report)
  • Added protection against usernames being impersonated with Unicode space characters (thanks Jakob Lell for the report)
  • Sessions weren't always cleaned up properly on logout (thanks creepernex for the report)
  • Certain fields were accepted during registration even when they shouldn't be (thanks tomreyn for the report)
  • Certain errors were unnecessarily shown during a failed registration and some of those were inappropriate anyway (thanks Labradoodle-360 for the report)
  • Approving an account from a member's profile was not logged (thanks emanuele for the report)
  • Approving an account from a member's profile did not always properly enforce security rules (thanks emanuele for the report)
  • The PHPSESSID injector would also add it to the canonical link, breaking it (thanks to all who reported it)
  • An invalid character was indicated in legacy attachment handling
  • Under some circumstances the admin panel would not accept the number of verification questions you had entered (thanks BurkeKnight for the report)
  • The help pages could sometimes accidentally direct users to non-existing pages (thanks AngelinaBelle for the report and Illori for the fix)

Lesen Sie mehr: http://www.simplemachines.org/community/index.php?topic=509417.0

2.0.5

(Sicherheitsupdate)
12 August 2013 - 22MBCritical security issues have been identified and are fixed with this update, therefore it is recommended to make sure you update your forums immediately to ensure your community is safe. A few other minor bugs have also been fixed.
  • Updated the WHOIS search URL for RIPE (thanks Runic)
  • Fixed a problem with upgrade.php that wasn't able to continue after db errors (thanks akc42 for the fix)
  • Fixed code injection in manage language pages (thanks HauntIT for the report)
  • Fixed XSS in the news page, emails field (thanks HauntIT for the report)
  • XSS in personal messages page (thanks HauntIT for the report)

Lesen Sie mehr: http://www.simplemachines.org/community/index.php?topic=509417.0

2.0.4

(Nachtrag 1)
5 August 2013 - 22MBApplications:
  • Added compatibility for CloudLinux CageFS.

2.0.4


1 Februar 2013 - 22MBCritical security issues have been identified and are fixed with this update, therefore it is recommended to make sure you update your forums immediately to ensure your community is safe. A few other minor bugs have also been fixed.
  • Joshua's fix for validatePasswordFlood logic error (reported by Raz0r)
  • Arantor fix for database error on lost connections
  • Quick fix for Admin Password Reset vulnerability reported by Raz0r
  • Directory traversal vulnerability in the function ViewFile (thanks yan.uniko.102 for reporting and Arantor for proposing the fix and Spuds for spotting the undefined variable)
  • active users cannot change anymore the email from action activate without deactivation/confirmation (thanks BarteX for reporting the issueand suggesting a fix)
  • Change language from the admin panel could allow XSS, path disclosure and code injection (thanks Jakub Galczyk for reporting the issue)
  • Missing arguments in SSI functions called through ?ssi= generated error messages showing full server file path (thanks yan.uniko.102 for reporting it)
  • Directory listing and editing of arbitrary files from the theme editing page in the admin panel

Lesen Sie mehr: http://www.simplemachines.org/community/index.php?topic=496403.0

2.0.3


16 Dezember 2012 - 22MBCritical security issues have been identified and are fixed with this update, therefore it is recommended to make sure you update your forums immediately to ensure your community is safe. A few other minor bugs have also been fixed. The most relevant bug fix is an issue that will arise in few months with PayPal: starting on February 1, 2013 PayPal will only accept headers which comply with the HTTP 1.1 specification.
  • SSI showed hidden boards on non-properly configured forums (part 2)
  • SSI showed hidden boards on non-properly configured forums
  • XSS in moderation log page (thanks kingW3 for the report)
  • ManagePaid fails if copies of Subscriptions-Paypal,php are present
  • PCRE engine starting at rev 8.3, will not allow you to specify the surrogate range D800–DFFF - From Spuds (similar to commit 10994)
  • Fixed lacking of check on referer URL when adminLogin comes into play (1.0, 1.1 and 2.0 versions)
  • Fixes for paypal moving to HTTP 1.1 [bug 5009]
  • update sandbox to use https, the former address results in a redirect
  • curl did not work due to improper check
  • subscriptions should also check for approved payment. Cherry-picked from git commit 07d4bc9fba8942fd284d3d0c3c732889a7bc2e6f by Spuds
  • Fixed the upgrade.php failing when the Themes directory was in a directory other than $boarddir (thanks iacchi for finding the cause)
  • Applied all the changes proposed by rawlogic to fix the intermittent session verification failures

Lesen Sie mehr: http://www.simplemachines.org/community/index.php?topic=492786.0

2.0.2


23 Dezember 2011 - 22MB

2.0.1


19 September 2011 - 22MB

2.0

(Hauptversion)
11 Juni 2011 - 22MB

Unsere Webhostings sind kompatibel mit
Simple Machines Forum

Web

Nur Webhosting

100%-SSD-Webhosting
100 GB und mehr
Multisite-Verwaltung
Kostenlose SSL-Zertifikate
DDoS-Schutz
10 GB VOD


Weitere Infos

ab 5.75 € / Monat

Classic

Das Web+Mail-Komplettangebot

100%-SSD-Webhosting
100 GB und mehr
Multisite-Verwaltung
Kostenlose SSL-Zertifikate
DDoS-Schutz
10 GB VOD


Professionelle E-Mail
25 E-Mail-Adressen mit unbegrenztem Speicherplatz


WorkSpace
Online-E-Mail-Client
Instant Messaging
Sychronisation von Kontakten und Kalendern


Weitere Infos

ab 7.42 € / Monat

Cloud-Server

Managed

100%-SSD-Webhosting
100 GB und mehr
Multi-Hostings und Multisites
Kostenlose SSL-Zertifikate
DDoS-Schutz
10 GB VOD


Leistung
2 CPU und mehr
6 GB RAM und mehr
100% SSD
100% dedizierte Ressourcen


Verwaltung
Infomaniak verwaltet Ihren Server


Weitere Infos

ab 29 € / Monat

Preise in EUR inkl. MwSt