We were recently informed of a very nasty exploit that, as far as we can see, affects almost all e107 0.7 releases.We were recently informed of a very nasty exploit that, as far as we can see, affects almost all e107 0.7 releases. Everyone running e107 needs to get their sites updated as soon as possible. If you are a site owner and you are unable to upgrade for some reason (too much hacked core code), please contact me directly and I can help you with a quick-fix.
Please get the word out to all other e107ers. If you find an e107 site out there, post on their site somewhere about this upgrade.
We have also included an automatic update check in this release. It was in previous ones, but was based of sourceforge's rss feed, which they apparently don't want to fix. The new code will now check a file on e107.org, which will always contain the most recent e107 release information. If there is an update available, you should see a notice on your main admin screen. Depending on your admin theme, it may also appear in the left column of all admin pages.
As always, please ensure you perform a full db and site backup before performing the upgrade. Please inform us if you have any problems with this new release.
For a list of the fixes, you can see them here: http://e107.org/e107_plugins/bugtrack/changelog.php?0717
Link to updates: http://e107.org/edownload.php
e107 is open-source and of course, free. None of the developers of this software are paid, but donations do help to cover our monthly dedicated-server costs. If you like and use e107, please consider making a $5 monthly donation. Every little bit helps and is greatly appreciated. Thank you.