CRITICAL SECURITY VERSION UPDATE:
https://github.com/daylightstudio/FUEL-CMS/releases/tag/1.4.13
https://github.com/daylightstudio/FUEL-CMS/releases/tag/1.4.13
almostcompletely
About
- Username
- almostcompletely
- Joined
- Visits
- 379
- Last Active
- Roles
- Member
Comments
-
See https://forum.getfuelcms.com/discussion/3666/jquery-v3-x-support for resolution. (NB: v5 isn't properly open source but v4.22 is and has been released as a final v4.x version)
-
See https://forum.getfuelcms.com/discussion/3666/jquery-v3-x-support for resolution
-
Vulnerable javascript library: jQuery version: 1.7.1 script uri: https://metadata.marinebiodiversity.org/fuel/modules/fuel/assets/js/jquery/jquery.js?c=-62169983925 Details: In jQuery version before 1.9.0b1 selector interpreted as HTML. This cou…
-
It's not you, it's me (well, Ubuntu 23.10 anyway) https://www.reddit.com/r/linux_gaming/comments/17uewpt/fyi_wine_fonts_breaking_webfonts_possible/
-
Revisiting this as it's cropped up for inline_edit buttons. Basically, I wanted to stretch all such dialogs to fit the containing form - and force 80% browser height if too long. I've made changes to line 170 of global.js and will post the solution…
-
Seems I had a rogue $this->form_builder->auto_execute_js = false; Also need to include $this->form_builder->load_custom_fields(APPPATH.'config/custom_fields.php');
-
I did but it's been a while. I think in my custom field library, I added var mybasePath = realpath(jqx_config.assetsPath+\'../fuel/modules/ckf_assets/assets/js/\'); var finder = new CKFinder(); finder.basePath = mybasePath; ...to the js I …
-
Perfect! Thanks.
-
Looks like aria-current is required for fuel_nav()s too. In Menu.php, within _create_open_li(), I've changed $str .= $this->_create_link($val); to $active = (is_array($val)) ? $val['id'] : $val; $str .= $this->_create_link($val,$ac…
-
aria-current="page" is automatic? Neat. Work fine. Thanks.
-
I think I've done that in the past and it's worked. Which bit of Fuel processes the custom_fields.php file? Perhaps I'll look at adding support for modules with their own custom fields...
-
Copy over the ./fuel/codeigniter and ./fuel/modules/fuel folders from the v1.5.2 package. Also copy over the ./fuel/application/config/purifier.php file. Compare your ./application/config/database.php and ./application/config/config.php files with …
-
Nothing to do with Fuel. https://www.reddit.com/r/learnjavascript/comments/astkkl/what_is_content_script_bundlejs_and/
-
Looks like insert_id is a property for MySQL8, rather than a function. So $this->db->insert_id works I don't have MySQL 7.x access, can anyone check if this is backwards compatible please?
-
Did you try my $config['cookie_secure'] = true; solution?
-
INSERT INTO `mytable` (staffid,datefrom,dateto,bhmode,daysequivelent) VALUES(70,"2023-01-20","2023-01-20",1,1); SELECT LAST_INSERT_ID(); Works fine from MySQL CLI. It's not the database. I have the same problem with another Fuel site too. v1…
-
auto_increment is on. The table and the code has been running for a number of years. $el = $this->xx_model->find_one('','id DESC); $id = $el['id'] works.
-
Open up your browser's debug console (F12?) and reload the page. You should get some more clues as to what's going on. Your NGINX server logs should also give you some clues.
-
Also check Apache has mod_rewrite installed and enabled. Use phpinfo() to check.
-
Turned out this is caused by the Search module. Line 59: https://github.com/daylightstudio/FUEL-CMS-Search/blob/master/models/Search_model.php $full_text_indexed = implode($full_text_fields, ', '); Should be: $full_text_indexed = implode…
-
No difference unfortunately. I can see session files appearing in my tmp directory. Could it be an encryption thing? EDIT: Turned out to be $config['cookie_secure'] = true; The HTTPS cert was broken and the site was defaulting to HTTP.
-
Local movies can eat up your hosting diskspace pretty quickly, so I tend to get owners to host their videos on Youtube. You'll want to add the "youtube" CKEditor plugin (v2.1.14 is compatible with the version of CKEditor used in Fuel). Remembe…
-
That worked. Thanks.
-
Further information: Taking $this->load->model('anotherdb_model'); out of the __construct and putting it into the controller function that uses it and replacing it with the $this->load->model('dummy_model'); stanza seems to get things…
-
pulling the launcher out of the fuel directory structure makes it work. I was hoping to use Fuel permissions to handle access to the tool, hence the advanced module. The same error exists for any iframe content within modules - eg. if the iframe p…
-
The CSS is loaded automatically by the main CK_Finder tool. The library function is rendering the JS since there's PHP involved in setting up the script to work. eg. flagging the CK_Finder tool use as authorised by Fuel permissions and making the …
-
$fields['image_selector'] = array( 'class' => 'MY_custom_fields', //library file 'function' => 'image_selector', 'css' => '', 'js' => array(), 'represents' => array('name' => 'image') ); It poi…
-
Didn't work. What did, for me on my server, was this at the top of the config.php: ini_set('session.cookie_samesite', 'Lax'); ini_set('session.cookie_secure', TRUE); I think CSRF cookies and the cookie section of config.php are indep…
-
What version are you on? I reported a bug with the class field not being saved earlier in the year which was fixed in the development branch (around May?)
-
That's what I would do. In my experience, the view file take priority over the CMS so I would move the home.php away from the file structure. Clear the Fuel cache when you're ready for the change to go public. [fuel_page_variables] is keyed on page…