PunBB 1.4 has been released
Posted on 2011-11-07 | Comments
PunBB 1.3.6 has been released.
This is a critical update. We strongly recommend that you update your forum! The 1.3.6 version offers: fixed XSS vulnerabilities, fixed error in bans on admin/bans.php and profile.php, fixed invalid closing tag on profile.php.
Posted on 2011-09-17 | Comments
PunBB 1.3.5 has been released.
The 1.3.5 version offers: a lot of fixes for bugs in CSS, added missing lang entries on language files, correct path and alerts on install, correct deprecated function calls, hidden guest email, increased visit timeout, deleting non-activated users on registering, fixed typos and more. Added paginal navigation on pages admin users and bans, added validation timezone and report length, added hooks.
Posted on 2011-03-21 | Comments
Join the PunBB development team!
Posted on 2011-03-03 | Comments
Found new vulnerability in PunBB 1.2 via "unserialize" function.
It was related to a bug in the PHP "unserialize" function. It was fixed and PunBB 1.2.23 is released. It is recommended that you update your PunBB 1.2.* installation.
Thanks to hcs for report.
Posted on 2010-08-11 | Comments
A possible XSS vulnerability was reported for the latest 1.2 revision.
This bug is fixed and PunBB 1.2.22 is released. It is recommended that you update your PunBB 1.2.* installation.
Thanks to endeavormac for the report.
Posted on 2009-09-01 | Comments
PunBB 1.3.4 has been released. The main change since 1.3.3 is the fix of the possible XSS vulnerability in profile.php on password and e-mail change (reported by Richard Sammet). As usual, the hotfix for older versions is released as well, which resolves the same security issue. If, for the reason of possible incompatibility of styles and extensions, you have not upgraded to 1.3.3 yet, you may also get along without upgrading to 1.3.4.
Posted on 2009-05-20 | Comments
PunBB 1.3.3 is released. 1.3.2 to 1.3.3 changes:
- a lot of bugs fixed (CSS & markup, defects in language files, correct response header placement upon errors, hook rearrangements, parsing posts in feeds, correct language pack detection during the final stage of the install process);
- contains fixes of security flaws (which were fixed by hotfixes in previous versions);
- it is now possible to limit searches to topic subjects or message bodies;
- users are not allowed to change their e-mails without entering their passwords first.
The already existing styles and language packs should be checked for compatibility with the version 1.3.3 before the latter is installed. After checking, the version 1.3.3 may be installed.
Posted on 2009-04-17 | Comments
PunBB.Net beta has been released!
We've been working on this project for quite a long time, trying to do our best to create a completely new product, but one that users are already familiar with. Now we are glad to present new PunBB.Net beta!
PunBB.NET is a forum written using the ASP.NET technology.
This forum is simple, fast and lightweight. The forum's core itself is only a basis, which allows attaching various extensions to it. This makes it possible for you to have a discussion board, which can be fine-tuned to meet all your requirements prefectly.
PunBB.NET is inspired by PunBB, being its child project. Both these forums utilize similar layouts and functionality, and they both are released under the GPL license.
The main difference between PunBB.NET and PunBB lies in the technology of their implementation.
PunBB.NET beta is the first public version of PunBB.NET.
For more details visit PunBB.NET page.
Posted on 2009-01-28 | Comments
PunBB 1.3.2 has been released. Apart from minor bugs, the following security flaws have been resolved (reported by Stefan Esser):
- an XSS vulnerability in login.php;
- a possible SQL-injection in the the admin settings page with permission config values;
- a possible SQL-injection in the the admin users page.
As usual, security hotfixes for versions 1.3 and 1.3.1 have been released.
Posted on 2008-12-08 | Comments