You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Admin.php file - In admin.php from lines 62 to 285 you have repeated "include_once('data/inc/header.php');" THIRTY TWO times. Since every single case has it, you only need to do it ONCE right before you start your switch.
Pluck uses sha512 for password encryption. Should be using bcrypt.
"All the code for magic quotes should not even be there"
What is that supposed to mean? There is no code to use magic quotes in pluck. On the contrary, it checks to make sure magic quotes are in fact not enabled. Don't see anything wrong with that. Thank the folks who came up with the idea, don't blame the ones who still have to deal with it.
If we want to remove that code completely, pluck will only be compatible with PHP versions that have no way of enabling magic quotes. That is the idea behind "deprecated": you do not use it anymore, but you still might have to deal with it until it's impossible to come up again. I am not sure that is the case yet.
There is one thing though: requirements.php should check if the function get_magic_quotes_gpc() is defined before making a call, like security.php does.
Due to forum discusion
Kevin Rubio (http://www.phphelp.com/forum/pluck-cms/pluck-improvements/):
Topcoder (http://www.phphelp.com/forum/pluck-cms/plan-for-pluck-cms-4-8/):
The text was updated successfully, but these errors were encountered: