codes****@googl*****
codes****@googl*****
2008年 9月 26日 (金) 23:51:01 JST
Author: mystralkk
Date: Fri Sep 26 07:40:50 2008
New Revision: 758
Modified:
trunk/geeklog-1-jp-extended/plugins/themedit/config.php
trunk/geeklog-1-jp-extended/plugins/themedit/functions.inc
trunk/geeklog-1-jp-extended/plugins/themedit/install_defaults.php
trunk/geeklog-1-jp-extended/public_html/admin/plugins/themedit/readme.html
trunk/geeklog-1-jp-extended/public_html/admin/plugins/themedit/readme_ja.html
Log:
themeditへのインクルードファイルの直接呼び出し防止策をjp-extendedにも反映し
ました。
Modified: trunk/geeklog-1-jp-extended/plugins/themedit/config.php
==============================================================================
--- trunk/geeklog-1-jp-extended/plugins/themedit/config.php (original)
+++ trunk/geeklog-1-jp-extended/plugins/themedit/config.php Fri Sep 26
07:40:50 2008
@@ -31,6 +31,10 @@
//
|
|
//
+---------------------------------------------------------------------------+
+if (strpos(strtolower($_SERVER['PHP_SELF']), 'config.php') !== false) {
+ die('This file can not be used on its own.');
+}
+
global $_DB_table_prefix, $_TABLES;
/**
@@ -48,7 +52,7 @@
/**
* Plugin info
*/
-$_THM_CONF['pi_version'] = '1.1.2'; // Plugin Version
+$_THM_CONF['pi_version'] = '1.1.3'; // Plugin Version
$_THM_CONF['gl_version'] = '1.4.0'; // GL Version plugin for
$_THM_CONF['pi_url'] = 'http://mystral-kk.net/'; // Plugin Homepage
Modified: trunk/geeklog-1-jp-extended/plugins/themedit/functions.inc
==============================================================================
--- trunk/geeklog-1-jp-extended/plugins/themedit/functions.inc (original)
+++ trunk/geeklog-1-jp-extended/plugins/themedit/functions.inc Fri Sep 26
07:40:50 2008
@@ -31,6 +31,10 @@
//
|
|
//
+---------------------------------------------------------------------------+
+if (strpos(strtolower($_SERVER['PHP_SELF']), 'functions.inc') !== false) {
+ die('This file can not be used on its own.');
+}
+
/**
* Language file Include
*/
Modified: trunk/geeklog-1-jp-extended/plugins/themedit/install_defaults.php
==============================================================================
--- trunk/geeklog-1-jp-extended/plugins/themedit/install_defaults.php
(original)
+++ trunk/geeklog-1-jp-extended/plugins/themedit/install_defaults.php Fri
Sep 26 07:40:50 2008
@@ -24,8 +24,8 @@
//
|
|
//
+---------------------------------------------------------------------------+
-if (strpos($_SERVER['PHP_SELF'], 'install_defaults.php') !== false) {
- die('This file can not be used on its own!');
+if (strpos(strtolower($_SERVER['PHP_SELF']), 'install_defaults.php') !==
false) {
+ die('This file can not be used on its own.');
}
/**
Modified:
trunk/geeklog-1-jp-extended/public_html/admin/plugins/themedit/readme.html
==============================================================================
---
trunk/geeklog-1-jp-extended/public_html/admin/plugins/themedit/readme.html
(original)
+++
trunk/geeklog-1-jp-extended/public_html/admin/plugins/themedit/readme.html
Fri Sep 26 07:40:50 2008
@@ -5,7 +5,7 @@
<meta http-equiv="Content-Style-Type" content="text/css">
<title>the Geeklog Theme Editor plugin</title>
<style type="text/css">
- <!-->
+ <!--
body {
color: black;
background-color: white;
@@ -53,14 +53,14 @@
color: green;
font-weight: bold;
}
- <! -->
+ -->
</style>
</head>
<body>
<h1>Geeklog Theme Editor Plugin [v1.1.2]</h1>
by mystral-kk [<a
href="mailto:geekl****@mystr*****">geekl****@mystr*****</a>]<br>
-Sep 14, 2008
+Sep 26, 2008
<h2>Table of Contents</h2>
@@ -83,6 +83,9 @@
<table border="1">
<tr>
<th>Date</th><th>Version</th><th>Description</th>
+ </tr>
+ <tr>
+ <td>Sep 26, 2008</td><td>1.1.3</td><td><span class="fix">[Fix]</span>
Upgraded to prevent include-files to be directly accessed in some
case-insensitive file systems (e.g. MS Windows).</td>
</tr>
<tr>
<td>Sep 14, 2008</td><td>1.1.2</td><td><span class="fix">[Fix]</span>
Upgraded to work well with PHP-4.x by not using htmlentities() and
html_entity_decode() functions.</td>
Modified:
trunk/geeklog-1-jp-extended/public_html/admin/plugins/themedit/readme_ja.html
==============================================================================
---
trunk/geeklog-1-jp-extended/public_html/admin/plugins/themedit/readme_ja.html
(original)
+++
trunk/geeklog-1-jp-extended/public_html/admin/plugins/themedit/readme_ja.html
Fri Sep 26 07:40:50 2008
@@ -5,7 +5,7 @@
<meta http-equiv="Content-Style-Type" content="text/css">
<title>Geeklog テーマエディタプラグイン</title>
<style type="text/css">
- <!-->
+ <!--
body {
color: black;
background-color: white;
@@ -53,13 +53,13 @@
color: green;
font-weight: bold;
}
- <! -->
+ -->
</style>
</head>
-<h1>Geeklogテーマエディタプラグイン [v1.1.2]</h1>
+<h1>Geeklogテーマエディタプラグイン [v1.1.3]</h1>
by mystral-kk [<a
href="mailto:geekl****@mystr*****">geekl****@mystr*****</a>]<br>
-2008年 9月14日
+2008年 9月26日
<h2>目次</h2>
@@ -82,6 +82,9 @@
<table border="1">
<tr>
<th>日付</th><th>バージョン</th><th>説明</th>
+ </tr>
+ <tr>
+ <td>2008年 9月26日</td><td>1.1.3</td><td><span class="new">[Fix]</span>
大文字小文字を区別しないファイルシステム(MS Windowsなど)で、インクルードフ
ァイルが直接アクセスされるのを防ぐ措置を追加しました。</td>
</tr>
<tr>
<td>2008年 9月14日</td><td>1.1.2</td><td><span class="new">[Fix]</span>
PHP-4.xで起こるエラーを避けるため、htmlentities(), html_entity_decode()関数
を使用しないようにしました。</td>