+[](http://www.phpbb.com)

+

+## ABOUT

+

+phpBB is a free bulletin board written in PHP.

+

+## COMMUNITY

+

+Find support and lots more on [phpBB.com](http://www.phpbb.com)! Discuss the development on [area51](http://area51.phpbb.com/phpBB/index.php).

+

+## CONTRIBUTE

+

+1. [Create an account on phpBB.com](http://www.phpbb.com/community/ucp.php?mode=register)

+2. [Create a ticket (unless there already is one)](http://tracker.phpbb.com/secure/CreateIssue!default.jspa)

+3. [Read our Git Contribution Guidelines](http://wiki.phpbb.com/Git); if you're new to git, also read [the introduction guide](http://wiki.phpbb.com/display/DEV/Working+with+Git)

+4. Send us a pull request

+

+## LICENSE

+

+[GNU General Public License v2](http://opensource.org/licenses/gpl-2.0.php)

+ <property name="newversion" value="3.0.8" />

+ <property name="prevversion" value="3.0.8-RC1" />

+ <property name="olderversions" value="3.0.2, 3.0.3, 3.0.4, 3.0.5, 3.0.6, 3.0.7-PL1" />

+ <!--ACLs-->

+ match="phpBB3/cache$" />

+ match="phpBB3/files$" />

+ match="phpBB3/store$" />

+ match="phpBB3/images/avatars/upload$" />

+ match="phpBB3/config.php$" />

+ <!-- SQL parameters -->

+ <parameter name="SQL Database Server" description="Enter the database server (usually machine name ) " defaultValue="." tags="SQL">

+ <parameter name="SQL DatabaseServer Instance" description="Enter the database instance name" defaultValue="SQLExpress" tags="SQL">

+ </parameter>

+ <!-- Read database server from config.php . Update 'dbhost' in config.php on publish -->

+ <parameter name="SQL Automatic DatabaseServer" defaultValue="dbhost = '{SQL Database Server}\\{SQL DatabaseServer Instance}';" tags="Hidden,SQL">

+ <parameterEntry kind="TextFile" scope="\\config\.php$" match="dbhost\s*=\s*'([^']*)'\s*;" />

+ </parameter>

+ name="SQL DatabaseName" description="Database name for your application." defaultValue="phpbb" tags="SQL, dbName">

+ <parameterEntry type="TextFile" scope="install/mssql.sql" match="PlaceHolderForDb" />

+ </parameter>

+ <!-- Read database name from config.php . Update 'dbname' in config.php on publish -->

+ <parameter name="SQL Automatic DatabaseName" defaultValue="dbname = '{SQL DatabaseName}';" tags="Hidden,SQL">

+ <parameterEntry kind="TextFile" scope="\\config\.php$" match="dbname\s*=\s*'([^']*)'\s*;" />

+ name="SQL DatabaseAdministrator"

+ name="SQL DatabaseAdministratorPassword"

+ name="SQL Database Username"

+ <!-- Read database user from config.php . Update 'dbuser' in config.php on publish -->

+ <parameter name="SQL Automatic Database User" defaultValue="dbuser = '{SQL Database Username}';" tags="Hidden,SQL">

+ <parameterEntry kind="TextFile" scope="\\config\.php$" match="dbuser\s*=\s*'([^']*)'\s*;" />

+ </parameter>

+

+ name="SQL Database Password"

+ <!-- Read database user password from config.php . Update 'dbpasswd' in config.php on publish -->

+ <parameter name="SQL Automatic Database Password" defaultValue="dbpasswd = '{SQL Database Password}';" tags="Hidden,SQL">

+ <parameterEntry kind="TextFile" scope="\\config\.php$" match="dbpasswd\s*=\s*'([^']*)'\s*;" />

+ </parameter>

+

+ <!-- SQL Connection string -->

+ name="SQL ConnectionString"

+ defaultValue="Server={SQL Database Server}\{SQL DatabaseServer Instance};Database={SQL DatabaseName};uid={SQL DatabaseAdministrator};Pwd={SQL DatabaseAdministratorPassword};"

+ <!-- MYSQL parameters -->

+ <!-- Read database server from config.php . Update 'dbhost' in config.php on publish -->

+ <parameter name="Automatic MySQL DatabaseServer" defaultValue="dbhost = '{MySQL Database Server}';" tags="Hidden,MySQL">

+ <parameterEntry kind="TextFile" scope="\\config\.php$" match="dbhost\s*=\s*'([^']*)'\s*;" />

+ </parameter>

+

+ name="MySQL Database Name"

+ <!-- Read database name from config.php . Update 'dbname' in config.php on publish -->

+ <parameter name="Automatic MySQL Database Name" defaultValue="dbname = '{MySQL Database Name}';" tags="Hidden,MySQL">

+ <parameterEntry kind="TextFile" scope="\\config\.php$" match="dbname\s*=\s*'([^']*)'\s*;" />

+ name="MySQL Database Username"

+ <!-- Read database user from config.php . Update 'dbuser' in config.php on publish -->

+ <parameter name="Automatic MySQL Database User" defaultValue="dbuser = '{MySQL Database Username}';" tags="Hidden,MySQL">

+ <parameterEntry kind="TextFile" scope="\\config\.php$" match="dbuser\s*=\s*'([^']*)'\s*;" />

+ </parameter>

+ </parameter>

+ <!-- Read database password from config.php . Update 'dbpasswd' in config.php on publish -->

+ <parameter name="MySQL Automatic Database Password" defaultValue="dbpasswd = '{MySQL Database Password}';" tags="Hidden,MySQL">

+ <parameterEntry kind="TextFile" scope="\\config\.php$" match="dbpasswd\s*=\s*'([^']*)'\s*;" />

+ </parameter>

+

+ <!-- MySQL admin credentials -->

+ <parameter

+ name="MySQL Database Administrator"

+ description="Database administrator username."

+ defaultValue="root"

+ tags="MySQL, DbAdminUsername" >

+ </parameter>

+ <parameter

+ name="MySQL Database Administrator Password"

+ description="Database administrator password."

+ tags="Password,MySQL,DbAdminPassword" >

+ <!-- MySQL Connectionstring -->

+ defaultValue="Server={MySQL Database Server};Database={MySQL Database Name};uid={MySQL Database Administrator};Pwd={MySQL Database Administrator Password};"

+ lang : '{LA_RECAPTCHA_LANG}',

+ theme : 'clean',

+<?php

+/**

+*

+* @package phpBB3

+* @version $Id$

+* @copyright (c) 2009, 2010 phpBB Group

+* @license http://opensource.org/licenses/gpl-license.php GNU Public License

+*

+*/

+

+/**

+* This script will check your database for potentially dangerous flash BBCode tags

+*/

+

+//

+// Security message:

+//

+// This script is potentially dangerous.

+// Remove or comment the next line (die(".... ) to enable this script.

+// Do NOT FORGET to either remove this script or disable it after you have used it.

+//

+die("Please read the first lines of this script for instructions on how to enable it\n");

+

+/**

+*/

+define('IN_PHPBB', true);

+$phpbb_root_path = (defined('PHPBB_ROOT_PATH')) ? PHPBB_ROOT_PATH : './';

+$phpEx = substr(strrchr(__FILE__, '.'), 1);

+include($phpbb_root_path . 'common.' . $phpEx);

+

+if (php_sapi_name() != 'cli')

+{

+ header('Content-Type: text/plain');

+}

+

+check_table_flash_bbcodes(POSTS_TABLE, 'post_id', 'post_text', 'bbcode_uid', 'bbcode_bitfield');

+check_table_flash_bbcodes(PRIVMSGS_TABLE, 'msg_id', 'message_text', 'bbcode_uid', 'bbcode_bitfield');

+check_table_flash_bbcodes(USERS_TABLE, 'user_id', 'user_sig', 'user_sig_bbcode_uid', 'user_sig_bbcode_bitfield');

+check_table_flash_bbcodes(FORUMS_TABLE, 'forum_id', 'forum_desc', 'forum_desc_uid', 'forum_desc_bitfield');

+check_table_flash_bbcodes(FORUMS_TABLE, 'forum_id', 'forum_rules', 'forum_rules_uid', 'forum_rules_bitfield');

+check_table_flash_bbcodes(GROUPS_TABLE, 'group_id', 'group_desc', 'group_desc_uid', 'group_desc_bitfield');

+

+echo "If potentially dangerous flash bbcodes were found, please reparse the posts using the Support Toolkit (http://www.phpbb.com/support/stk/) and/or file a ticket in the Incident Tracker (http://www.phpbb.com/incidents/).\n";

+

+function check_table_flash_bbcodes($table_name, $id_field, $content_field, $uid_field, $bitfield_field)

+{

+ echo "Checking $content_field on $table_name\n";

+

+ $ids = get_table_flash_bbcode_pkids($table_name, $id_field, $content_field, $uid_field, $bitfield_field);

+

+ $size = sizeof($ids);

+ if ($size)

+ {

+ echo "Found $size potentially dangerous flash bbcodes.\n";

+ echo "$id_field: " . implode(', ', $ids) . "\n";

+ }

+ else

+ {

+ echo "No potentially dangerous flash bbcodes found.\n";

+ }

+

+ echo "\n";

+}

+

+function get_table_flash_bbcode_pkids($table_name, $id_field, $content_field, $uid_field, $bitfield_field)

+{

+ global $db;

+

+ $ids = array();

+

+ $sql = "SELECT $id_field, $content_field, $uid_field, $bitfield_field

+ FROM $table_name

+ WHERE $content_field LIKE '%[/flash:%'

+ AND $bitfield_field <> ''";

+

+ $result = $db->sql_query($sql);

+ while ($row = $db->sql_fetchrow($result))

+ {

+ $uid = $row[$uid_field];

+

+ // thanks support toolkit

+ $content = html_entity_decode_utf8($row[$content_field]);

+ set_var($content, $content, 'string', true);

+ $content = utf8_normalize_nfc($content);

+

+ $bitfield_data = $row[$bitfield_field];

+

+ if (!is_valid_flash_bbcode($content, $uid) && has_flash_enabled($bitfield_data))

+ {

+ $ids[] = (int) $row[$id_field];

+ }

+ }

+ $db->sql_freeresult($result);

+

+ return $ids;

+}

+

+function get_flash_regex($uid)

+{

+ return "#\[flash=([0-9]+),([0-9]+):$uid\](.*?)\[/flash:$uid\]#";

+}

+

+// extract all valid flash bbcodes

+// check if the bbcode content is a valid URL for each match

+function is_valid_flash_bbcode($cleaned_content, $uid)

+{

+ $regex = get_flash_regex($uid);

+

+ $url_regex = get_preg_expression('url');

+ $www_url_regex = get_preg_expression('www_url');

+

+ if (preg_match_all($regex, $cleaned_content, $matches))

+ {

+ foreach ($matches[3] as $flash_url)

+ {

+ if (!preg_match("#^($url_regex|$www_url_regex)$#i", $flash_url))

+ {

+ return false;

+ }

+ }

+ }

+

+ return true;

+}

+

+// check if a bitfield includes flash

+// 11 = flash bit

+function has_flash_enabled($bitfield_data)

+{

+ $bitfield = new bitfield($bitfield_data);

+ return $bitfield->get(11);

+}

+

+// taken from support toolkit

+function html_entity_decode_utf8($string)

+{

+ static $trans_tbl;

+

+ // replace numeric entities

+ $string = preg_replace('~&#x([0-9a-f]+);~ei', 'code2utf8(hexdec("\\1"))', $string);

+ $string = preg_replace('~&#([0-9]+);~e', 'code2utf8(\\1)', $string);

+

+ // replace literal entities

+ if (!isset($trans_tbl))

+ {

+ $trans_tbl = array();

+

+ foreach (get_html_translation_table(HTML_ENTITIES) as $val=>$key)

+ $trans_tbl[$key] = utf8_encode($val);

+ }

+ return strtr($string, $trans_tbl);

+}

+

+// taken from support toolkit

+// Returns the utf string corresponding to the unicode value (from php.net, courtesy - romans@void.lv)

+function code2utf8($num)

+{

+ if ($num < 128) return chr($num);

+ if ($num < 2048) return chr(($num >> 6) + 192) . chr(($num & 63) + 128);

+ if ($num < 65536) return chr(($num >> 12) + 224) . chr((($num >> 6) & 63) + 128) . chr(($num & 63) + 128);

+ if ($num < 2097152) return chr(($num >> 18) + 240) . chr((($num >> 12) & 63) + 128) . chr((($num >> 6) & 63) + 128) . chr(($num & 63) + 128);

+ return '';

+}

+<h4> Security

+</h4>

+<ul>

+<li>[<a href='http://tracker.phpbb.com/browse/PHPBB3-9903'>PHPBB3-9903</a>] - Execute javascript in [flash=] BBCode

+</li>

+</ul>

+<li>[<a href='http://tracker.phpbb.com/browse/PHPBB3-9509'>PHPBB3-9509</a>] - phpBB Coding Guidelines state subversion as the version control system for phpBB

+</li>

+<li>[<a href='http://tracker.phpbb.com/browse/PHPBB3-9899'>PHPBB3-9899</a>] - Change the style in the ACP for the recaptcha to match that displayed on prosilver

+</li>

+<li>[<a href='http://tracker.phpbb.com/browse/PHPBB3-9904'>PHPBB3-9904</a>] - Update WebPI Parameters.xml

+</li>

+ <a name="commitmessage"></a><h3>7.ii. Commit Messages and Repository Rules</h3>

+ <p>Information on repository rules, such as commit messages can be found at <a href="http://wiki.phpbb.com/display/DEV/Git" title="phpBB Git Information">http://wiki.phpbb.com/display/DEV/Git</a>.</p>

+define('PHPBB_VERSION', '3.0.9-dev');

+

+ $in = str_replace(' ', '%20', $in);

+

+ // Make sure $in is a URL.

+ if (!preg_match('#^' . get_preg_expression('url') . '$#i', $in) &&

+ !preg_match('#^' . get_preg_expression('www_url') . '$#i', $in))

+ {

+ return '[flash=' . $width . ',' . $height . ']' . $in . '[/flash]';

+ }

+

+$updates_to_version = '3.0.9-dev';

+ // No changes from 3.0.8-RC1 to 3.0.8

+ '3.0.8-RC1' => array(),

+

+

+ // No changes from 3.0.8-RC1 to 3.0.8

+ case '3.0.8-RC1':

+ break;

+INSERT INTO phpbb_config (config_name, config_value) VALUES ('version', '3.0.9-dev');

+# POSTGRES COMMIT #

+ 'SYSTEM_TIMEZONE_EXPLAIN' => 'Timezone to use for displaying times to users who are not logged in (guests, bots). Logged in users set their timezone during registration and can change it in their user control panel.',

+ 'VISUAL_CONFIRM_REFRESH_EXPLAIN' => 'Allows users to request a new anti-spambot task if they are unable to solve the current task during registration. Some plugins might not support this option.',

+ 'LDAP_PASSWORD_EXPLAIN' => 'Leave blank to use anonymous binding, otherwise fill in the password for the above user. Required for Active Directory Servers.<br /><em><strong>Warning:</strong> This password will be stored as plain text in the database, visible to everybody who can access your database or who can view this configuration page.</em>',