Sec-Fix Patch 7.3 Date: Tuesday, June 08, 2004 @ 12:11 AM CDT Topic: PHP-Nuke PHP-Nuke 7.3 security and bug fix update. Fixes: Path disclosure in security check of files. Included instructions mainly cover that one but included files also cover: Sql Injection filter update Stories categories show as already existing even if they don't. Missing semi-colon in admin stories file Downloads orderby fix Mailpasswd username length limit Incorrect user validation in Your Account module Stories with timestamp 00:00:00 don't show in Stories_Archive. Single quotes in content category description. Multiple vulnerabilities SQL injection and XSS Download here. Update: Forum files removed from patch and security fix applied to the Reviews module. This article comes from Nuke Resources http://www.nukeresources.com The URL for this story is: http://www.nukeresources.com/modules.php?name=News&file=article&sid=704