Hello,
It seems were having an issue with our Dolphin7 having a SQL injection flaw.
What would you recommend for this issue?
We have only basic knowledge.
Any help would be greatly appreciated.
Regards,
Thomas
SQL injection flaw.
 |
What version you are running? so much to do.... |
Hello, We are running 7.0.4 Regards |
OMG...you are on a very old version. There are many fixes. You should consider upgrading or check the changelog one by one and apply all security fixes, this will take time and patience. so much to do.... |
Ah, i see.
Regards |
7.0.6 had a security update. There have been several hundred fixes between the version you're running and 7.0.9. You and a lot of others need to get a little more diligent about applying updates. My opinions expressed on this site, in no way represent those of Boonex or Boonex employees. |
Per this note, http://www.boonex.com/n/dolphin-7-0-8-released there were also security updates in dolphin 7.0.8 as well. https://www.deanbassett.com |
Hi, We have held off doing upgrades because we had made some changes to the site and did not want to lose them. Any suggestions? Regards |
In that case, you should have kept an eye on changelogs and little visits for reading some info here wouldn't hurt. Applying them one at a time is easy than searching and applying 100 at a time. so much to do.... |
start here maybe http://www.boonex.com/trac/dolphin/report/6?asc=1&USER=anonymous&page=9 and keep going through all tickets. so much to do.... |
Thank you! If we do decide to upgrade from 7.0.4 to 7.0.9, is there one upgrade we can do? Or, do we have to upgrade each version separately? Regards |
You have to upgrade each version separately and don't forget the backup. so much to do.... |
You should clone the site in a sub directory, and run the backups on it, just to get a feel how it will go.... time consuming, but may save you some grief if something goes wrong My opinions expressed on this site, in no way represent those of Boonex or Boonex employees. |
If you're not going to be quick on the upgrades I would strongly suggest you install Apache Mod_security which will catch and block most of the popular sql attacks. The upgrades are a better route but this is better than nothing. BoonEx Certified Host: Zarconia.net - Fully Supported Shared and Dedicated for Dolphin |
I have upgraded all the way to 7.0.9 but i see couple of issues... 1. The forum is no longer working. I see the note about it. But, not sure what do do? Who is the template author? 2. The login box at the top is now gone. How can i get it back? Regards |
Also, i see that all of my images/graphics are now not appearing! Anyone would know why? |
Disregard the images issue. They are not appearing ONLY in Opera browser. not sure why though. |
Okay, i got the Forums back by following directions here: http://www.boonex.com/forums/topic/Forum-issues-after-7-0-8-upgrade-Try-this.htm
Regards |
RE But, the login box at the very top is still missing. Any ideas?
Regards Are you using something other than the default UNI template? My opinions expressed on this site, in no way represent those of Boonex or Boonex employees. |
Yes, using the 'net' template. |
Below is the legacy version of the Boonex site, maintained for Dolphin.Pro 7.x support.
The new Dolphin solution is powered by UNA Community Management System.
The new Dolphin solution is powered by UNA Community Management System.