Greg Roach
-
2009-02-12
- milestone: --> v4.1.7
I raised this as a 4.1.6 issue on the Help board and Gerry developed the fix the same day, but the fix didn't make it into the 4.1.7 package. It needs to be in there for our PHP4 users. Here's Gerry's original response (one typo corrected) --
Fixed in SVN 4606. Replaced "editnews.php".
Change line 42 from
$username=safe_POST('username');
to
$username=safe_REQUEST($_REQUEST, 'username');
Also, we need a new Group menu item of 4.1.7 on these bug reports.