Category Archives: CMS
Forgot Manager Login Upgrade and Disabled
Security note from MODX: The Forgot Manager Login plugin distributed with all versions of MODX Evolution (and 0.9.x) contains a vulnerability that allows users to gain unauthorized access to the MODX Manager.
Action:
Upgrade Forgot Manager Login to version 1.1.4 and also disabled the plug in.
MODX Evo: Turn Off System Events Tracking
document.parser.class.inc.php (manager/includes)
@ ini_set("track_errors", "0");
(0=off, 1=on)
Upgrade Notes
WordPress: Just hit the upgrade button
Drupal: Latest 6.25 (follow UPGRADE.txt in Drupal core for instructions)
MODX: 1.06
- Follow Upgrading Guide (Alternate Method).
- Back up config.inc.php and document.parser.class.inc.php
- Once upgraded, change default sort order in resource tree:
if (!isset($_SESSION['tree_sortby']) && !isset($_SESSION['tree_sortdir'])) {
// This is the first startup, set default sort order
$_SESSION['tree_sortby'] = 'menuindex'; // Change menuindex to a value of your choice.
$_SESSION['tree_sortdir'] = 'ASC';
} - PHx Bug & pageTOC issue: The fix is to increase the pcre.backtrack_limit setting in php.inifrom 100000 to 800000
[Pcre]
;PCRE library backtracking limit.
pcre.backtrack_limit=800000