RocketTheme - TOPIC: XSS Patches available for all templates (5/12)

Welcome Guest! Login

0 items Join Now

- Gillian MB Tyrer
- Rocketeer
- Posts: 51
- Thanks: 0
Re: XSS Patches available for all templates

Posted 16 years 10 months ago
- After patching rt_versatility_ii_beige_rokstar there are a number of issues in relation to Module Class Suffix's.
  Where should I post feedback on this ?
#130360
- Kevin DuCommun
- Elite Rocketeer
- Posts: 1583
- Thanks: 4
Re: XSS Patches available for all templates

Posted 16 years 10 months ago
- Just a note: Colormatic RocketLauncher still shows updated 11/15/2007
  
  Thanks for the heads up, for some reason the date wasnt updating. Date should appear correct now, the file was already updated however so no need to have to redownload.
  
  After patching rt_versatility_ii_beige_rokstar there are a number of issues in relation to Module Class Suffix's.
  Where should I post feedback on this ?
  
  Please download the Versatility II RokStar patch files again, there was an incorrect index.php file in there referencing changes to the original Versatility II, whereas the RokStar version has a few extra variables. The instructions have been updated to include these additional variables. This shouldn't have affected module suffixes, as its only the additional variables in the index.php, but its possible it could have led to the problem.
- Last Edit: 16 years 10 months ago by Kevin DuCommun.
#130365
- Gillian MB Tyrer
- Rocketeer
- Posts: 51
- Thanks: 0
Re: XSS Patches available for all templates

Posted 16 years 10 months ago
- Kevin DuCommun wrote:
  Please download the Versatility II RokStar patch files again, there was an incorrect index.php file in there referencing changes to the original Versatility II, whereas the RokStar version has a few extra variables. The instructions have been updated to include these additional variables. This shouldn't have affected module suffixes, as its only the additional variables in the index.php, but its possible it could have led to the problem.
  
  Many thanks Kevin, that has fixed the problem.
#130387
- Joe Halleck
- Preeminent Rocketeer
- Posts: 5480
- Thanks: 67
- Never give up!
Re: XSS Patches available for all templates

Posted 16 years 10 months ago
- I was looking for an excuse to re-download all of the RT templates. ;D
  Thanks for keeping us updated and fixing all of these templates so quickly!
- Magento - phpBB3 - Kunena - RokBridge Specialist
  No Secure Tab posts unless requested.
  Use the Thank You and Life Preserver Buttons!
  Your signature is also great place for setup details...help us help you!
#130420
- SureLurksalot
- Elite Rocketeer
- Posts: 512
- Thanks: 0
Re: XSS Patches available for all templates

Posted 16 years 10 months ago
- Just to clarify, I did not see any mention of Novus or the other free releases in this list.
  Are they indeed unaffected?
- Do not go where the path may lead, go instead where there is no path and leave a trail.
#130421
- Jaime Norero
- Newbie
- Posts: 1
- Thanks: 0
Re: XSS Patches available for all templates

Posted 16 years 10 months ago
- I just did a fresh install of the latest stable Joomla, and installed Carbonation - Aug06, but the color, font size, and width buttons in the top right do not work. It returns a page saying "Direct Access to this location is not allowed." When I looked at this template on the demo prior to the vulnerability fix, it worked, but now, even on the demo, it does not. Any ideas on how to fix this? Thanks!
#130427
- Kevin DuCommun
- Elite Rocketeer
- Posts: 1583
- Thanks: 4
Re: XSS Patches available for all templates

Posted 16 years 10 months ago
- I just did a fresh install of the latest stable Joomla, and installed Carbonation - Aug06, but the color, font size, and width buttons in the top right do not work. It returns a page saying "Direct Access to this location is not allowed." When I looked at this template on the demo prior to the vulnerability fix, it worked, but now, even on the demo, it does not. Any ideas on how to fix this? Thanks!
  
  Please redownload the Carbonation XSS patch, I've fixed the error, there was an additional step needed for the syntax change and it should work properly now. I've also added a post to the Carbonation/Carbonite forum explaining the extra steps for patching, the details are in the updated XSS patch package readme as well.
  
  Just to clarify, I did not see any mention of Novus or the other free releases in this list.
  Are they indeed unaffected?
  
  Novus is the only free template affected, you can download the latest version here: joomlacode.org/gf/project/rockettheme/fr...&frs_package_id=3050
  
  The only changes needed are to simply replace the "rt_styleloader.php" and "rt_stylechanger.php" files with the new ones in the 1.0.1 package.
- Last Edit: 16 years 10 months ago by Kevin DuCommun.
#130449
- SureLurksalot
- Elite Rocketeer
- Posts: 512
- Thanks: 0
Re: XSS Patches available for all templates

Posted 16 years 10 months ago
- Cool Thanks Kevin!
- Do not go where the path may lead, go instead where there is no path and leave a trail.
#130463
- Dainis Michel
- Sr. Rocketeer
- Posts: 121
- Thanks: 0
Re: XSS Patches available for all templates

Posted 16 years 10 months ago
- Yo ho, thanks, I'm working on updating a Dimensions install and I posted the procedure, along with a question here:
  
  www.rockettheme.com/option,com_smf/Itemi...topic,24754.new/#new
  
  Best,
  Dainis
- www.rglohjahwwans.com/ your instruction guide to sustainable bliss...now!
  www.music-composition-studio.com/ for Composers and Songwriters
#130522
- ragots
- Rocketeer
- Posts: 54
- Thanks: 0
Re: XSS Patches available for all templates

Posted 16 years 10 months ago
- I have an issue.
  
  My membership to RT Joomla Template Club ended dec 30. I need to install the patch for POPULUS. What can I do if I don't want to renew my subscription ? Can Rockettheme send me those two files required for the patch for POPULUS ?
  
  thank you.
#130523