Composr Issue Tracker
Welcome to the issue tracker! Here, you can view reported software issues.All users are encouraged to report software issues or suggestions to the tracker. You will be awarded points for each issue you report that gets completed by someone.
Developers are encouraged to go through the tracker and implement issues. You will receive points for issues you implement. Prioritise issues in the following order:
- Security issues
- Major issues
- Minor issues
- Trivial issues
- Feature requests
- Be aware this requires you create a measure for voting, and you achieve a simple majority, before implementing into core code. This is not necessary for non-bundled addons.
Please read our providing feedback tutorial page before reporting an issue.
Click here to view the full issue tracker catalogue.
Click here to report an issue or suggestion.
Search tracker issues
Open issues
| Identifier | Issue type | Title | Status | Funded? | |
|---|---|---|---|---|---|
| #6237 | Minor issue (breaks specific functionality) | testing_platform: critical_error_display_test_set fails even though _critical_error.html works | Open | No | View |
| #6236 | Feature request or suggestion | testing_platform: In lang_ini_size, add smart test for global.ini | Open | No | View |
| #6234 | Minor issue (breaks specific functionality) | Adding an attachment to quick reply does not actually add it | Open | No | View |
| #6232 | Security issue (exploit in Composr) | Loose string comparison may return true for scientific notation | Open | No | View |
| #6228 | Minor issue (breaks specific functionality) | Catalogue field sorting may trigger ORDERBY_HACK | Open | No | View |
| #6227 | Feature request or suggestion | Always mark Private Topics validated | Open | No | View |
| #6222 | Feature request or suggestion | Consider requiring command line for cron_bridge.php (except for query mode) | Open | No | View |
| #6221 | Feature request or suggestion | Add support for upgrading via command line | Open | No | View |
| #6217 | Trivial issue (does not break functionality) | Code Book, Part 4: Update standard on json_decode use | Open | No | View |
| #6215 | Trivial issue (does not break functionality) | Antifeatures still says WebDAV not included | Open | No | View |
Completed issues
| Identifier | Issue type | Title | Status | Funded? | |
|---|---|---|---|---|---|
| #6325 | Minor issue (breaks specific functionality) | Block pagination causes recursive self_url builds eventually resulting in HTTP request too large | Completed | No | View |
| #6331 | Minor issue (breaks specific functionality) | p_param_b data too long when deleting content | Completed | No | View |
| #3886 | Security issue (exploit in Composr) | Illicit stats access vulnerability via direct URL access | Completed | No | View |
| #3876 | Security issue (exploit in Composr) | XSS vulnerability via mime sniffing on .dat files | Completed | No | View |
| #3887 | Security issue (exploit in Composr) | Information leak on IIS | Completed | No | View |
| #4008 | Security issue (exploit in Composr) | Backups should be given reduced privileges | Completed | No | View |
| #4076 | Security issue (exploit in Composr) | Security error in parameterised queries | Completed | No | View |
| #4095 | Security issue (exploit in Composr) | Composr CMS 10.0.30 - (Authenticated) Cross-Site Scripting | Completed | No | View |
| #4101 | Security issue (exploit in Composr) | Incorrect escaping of field labels (esp usergroup names) | Completed | No | View |
| #4157 | Security issue (exploit in Composr) | XSS if showing topics via main_multi_content block | Completed | No | View |
