From 4338a291f8b36c652876c8a4744a720ecba88e52 Mon Sep 17 00:00:00 2001 From: Steffen Lange Date: Sat, 1 Oct 2016 21:12:40 +0200 Subject: [PATCH 1/3] Added libxml_disable_entity_loader calls Workaround for libxml_disable_entity_loader bug using PHP+FastCGI --- bl-plugins/sitemap/plugin.php | 4 +++- 1 file changed, 3 insertions(+), 1 deletion(-) diff --git a/bl-plugins/sitemap/plugin.php b/bl-plugins/sitemap/plugin.php index 65e9630c..3af46de2 100644 --- a/bl-plugins/sitemap/plugin.php +++ b/bl-plugins/sitemap/plugin.php @@ -137,7 +137,9 @@ class pluginSitemap extends Plugin { $doc = new DOMDocument(); // Load XML + libxml_disable_entity_loader(false); $doc->load(PATH_PLUGINS_DATABASES.$this->directoryName.DS.'sitemap.xml'); + libxml_disable_entity_loader(true); // Print the XML echo $doc->saveXML(); @@ -147,4 +149,4 @@ class pluginSitemap extends Plugin { } } -} \ No newline at end of file +} From c02a6d033a46f04167948a538badf7d53022182f Mon Sep 17 00:00:00 2001 From: Steffen Lange Date: Sat, 1 Oct 2016 21:13:24 +0200 Subject: [PATCH 2/3] Added libxml_disable_entity_loader calls Workaround for libxml_disable_entity_loader bug using PHP+FastCGI --- bl-plugins/rss/plugin.php | 4 +++- 1 file changed, 3 insertions(+), 1 deletion(-) diff --git a/bl-plugins/rss/plugin.php b/bl-plugins/rss/plugin.php index 99a223da..0807322b 100644 --- a/bl-plugins/rss/plugin.php +++ b/bl-plugins/rss/plugin.php @@ -95,7 +95,9 @@ class pluginRSS extends Plugin { $doc = new DOMDocument(); // Load XML + libxml_disable_entity_loader(false); $doc->load(PATH_PLUGINS_DATABASES.$this->directoryName.DS.'rss.xml'); + libxml_disable_entity_loader(true); // Print the XML echo $doc->saveXML(); @@ -105,4 +107,4 @@ class pluginRSS extends Plugin { } } -} \ No newline at end of file +} From ef58ba8daa6c78e4d2cee3dab0e12ff0a7ed4cd4 Mon Sep 17 00:00:00 2001 From: Diego Najar Date: Wed, 5 Oct 2016 16:56:16 -0300 Subject: [PATCH 3/3] Profile picture bug fixed --- bl-kernel/admin/themes/default/init.php | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/bl-kernel/admin/themes/default/init.php b/bl-kernel/admin/themes/default/init.php index bc67c0d9..cdf84184 100644 --- a/bl-kernel/admin/themes/default/init.php +++ b/bl-kernel/admin/themes/default/init.php @@ -357,7 +357,7 @@ $(document).ready(function() { type: "json", action: HTML_PATH_ADMIN_ROOT+"ajax/uploader", allow : "*.(jpg|jpeg|gif|png)", - params: {"type":"profilePicture", "username":"'.$username.'"}, + params: {"tokenCSRF":tokenCSRF, "type":"profilePicture", "username":"'.$username.'"}, loadstart: function() { $("#bludit-profile-picture-progressbar").find(".uk-progress-bar").css("width", "0%").text("0%");