MyAAC now supports Emojis

Yes! You heard good – MyAAC now supports Emojis in menus, newses, pages, forum, etc. This was possible with changing MySQL character set to utf8mb4, which will replace default utf8 in next MySQL releases. The commit with changes is here: https://github.com/slawkens/myaac/commit/27c44f1bdfb6234cf0c9d5b4b491123bb205b08f The changes are for 1.0+ but it can be easily applied to 0.8 by …

Read More MyAAC now supports Emojis

Recent security vulnerabilities (XSS + Session fixation)

Hello, It’s late, but I will try to describe security vulnerabilities I found recently: 1) XSS in BugTrackerYou visit bug tracker, hacker can login on your account. This works only if you – as admin – logs into bug tracker and there is malicious report/code from user. The fix is here: Fix XSS in bugtracker.php …

Read More Recent security vulnerabilities (XSS + Session fixation)