Archive
Monthly
Go
|
|
DNN Blog
Sep
9
Posted by:
Steve Fabian
9/9/2008
3.01.15 has been released and contains a fix for a verified security risk.
The Item fixed is REP-8323.
Although this has been verified as a risk, the circumstances under which an attack can be successful are extremely specific. The existing code, 3.01.14 and prior, performs filtering of querystring parameters making exploitation difficult. However, to guarantee the security of your site, upgrading to 3.01.15 is highly recommended.
There are no functional or data changes in 3.01.15. It only includes a code fix for this one item.
9 comment(s) so far...
Re: Repository 3.01.15 Officially Released
I'd like to see this module expand on features. Please visit our Volunteer Fire Site to see how I put the repository to use: www.woodsborovfc.org (see bottom of the multimedia link). Try navigating it a few times, and you may notice some minor issues which probably can be resolved by a minor update to the "Repository Module".
I wish it was easier for me to display photos. Maybe I'm using it in the wrong manner.
By untamedchap on
10/24/2008
|
Re: Repository 3.01.15 Officially Released
I'd like to see the module expand to help me with my photo repository. A small code tweaks could make this much better. The navigation could be improved . (www.woodsborovfc.org) For example, I have the most recent photo additions on my home page. When I click the link it takes me to the "top" of my repository page and not necessarily to the photo (see my site to see it happen). In addition, I would love a feature that would actually display the TOP photo on the main page instead of the link. Maybe I'm using the repository in the wrong manner?
By untamedchap on
10/24/2008
|
Re: Repository 3.01.15 Officially Released
please post any issues in the Repository support forum. Thanks! ( nice looking site btw )
By sfabian@gooddogs.com on
10/24/2008
|
Re: Repository 3.01.15 Officially Released
I had a request for the ability to enable downloads per file. For example, I have a website where artists upload files to our website. When a file is uploaded, it is made available via a an MP3 player embedded in the website. Any uploaded MP3 can be downloaded by registered users. Some artists are reluctant to upload MP3s, even though they want it featured in the MP3 player, because they don't want users to download their music. Is this a possibility in the near future?
By Mario Vargas on
6/26/2009
|
Re: Repository 3.01.15 Officially Released
hello
i am getting an error if i upload the file of size 30 MB i have made all the changes in the web.config file
But still not working ..
By Sandeep on
6/26/2009
|
Re: Repository 3.01.15 Officially Released
hai this is seenu i am need to free rpositary module how to i downloaded pls help me
By seenu on
6/26/2009
|
Re: Repository 3.01.15 Officially Released
The Repository Module is very powerful. I would like to see an enhancement that allows me to selectively publish and expire content based upon date. Would that be difficult to add or possibly create a skin to do that?
By Jon Paskett on
7/29/2009
|
Re: Repository 3.01.15 Officially Released
after performing this upgrade I lost the use of my custom attributes. Any idea why this may have happened and how I can regain use of them? They are still listed in the settings, but no drop down list anymore.
By Andy McDonald on
12/21/2009
|
Re: Repository 3.01.15 Officially Released
@Andy, if you modified one of the 'bundled' templates, then applying the update will overwrite your changes. That is why it is 'highly' recommended to 'copy' a template if you want to modify it, then change the new copy and use that
By Steve Fabian on
12/21/2009
|
|