{"id":18757,"date":"2020-02-06T13:50:16","date_gmt":"2020-02-06T05:50:16","guid":{"rendered":"http:\/\/4563.org\/?p=18757"},"modified":"2020-02-06T13:50:16","modified_gmt":"2020-02-06T05:50:16","slug":"chevereto%e5%9b%be%e5%ba%8a-%e5%88%9a%e7%9c%8b%e5%88%b0%e6%9c%89%e6%9b%b4%e6%96%b0%e3%80%82","status":"publish","type":"post","link":"http:\/\/4563.org\/?p=18757","title":{"rendered":"Chevereto\u56fe\u5e8a \u521a\u770b\u5230\u6709\u66f4\u65b0\u3002"},"content":{"rendered":"\n

\t\t\t\t\tuni2046<\/strong> \t\t\t\t\u5927\u4f6c\u6709\u8bdd\u8bf4 : 2020-1-3 17:04:55\t<\/p>\n

Chevereto\u56fe\u5e8a \u521a\u770b\u5230\u6709\u66f4\u65b0\u3002<\/h3>\n

\t\t\u66f4\u65b0\u53ef\u9009\u7684v3.14.0<\/p>\n

\u5207\u7ef4\u96f7\u72793.14.0\uff082020-01-02\uff09<\/p>\n

\u589e\u52a0\u4e86\u5bf9WebP\u7684\u652f\u6301<\/p>\n

\u589e\u52a0\u4e86\u5bf9APNG\u7684\u652f\u6301<\/p>\n

\u6dfb\u52a0\u4e86\u4ec5\u9650HTTP\u548c\u5b89\u5168cookie\u6807\u5fd7<\/p>\n

\u5728\/update\u5904\u6dfb\u52a0\u4e86\u8eab\u4efd\u9a8c\u8bc1\u4ee4\u724c\uff08CSRF\uff09<\/p>\n

\u4e3a\u57fa\u4e8ecookie\u7684\u767b\u5f55\u5c1d\u8bd5\u6dfb\u52a0\u4e86\u66b4\u529b\u4fdd\u62a4<\/p>\n

\u4e3a\u5927\u5bb9\u91cf\u5185\u5bb9\u5bfc\u5165\u6dfb\u52a0\u4e86\u9650\u5236\u8def\u5f84<\/p>\n

\u4fee\u590d\u4e86\u7ad9\u70b9\u8bbe\u7f6e\u4e2d\u7684XSS\u6f0f\u6d1e<\/p>\n

\u4fee\u590d\u4e86\u7528\u6237\u914d\u7f6e\u6587\u4ef6\u4e2d\u7684XSS\u6f0f\u6d1e<\/p>\n

\u4fee\u590d\u4e86WhatsApp\u5171\u4eab\u6309\u94ae\u4e2d\u7684XSS\u6f0f\u6d1e<\/p>\n

\u4fee\u6b63\u4e86\u4efb\u4f55\u4e0a\u4f20\u7a0b\u5e8f\u4e2d\u7684\u9519\u8bef<\/p>\n

\u4fee\u590d\u4e86\u7ef4\u62a4\u6a21\u5f0f\u4e2d\u7684\u9519\u8bef\uff08\u5df2\u7981\u7528reCaptcha verify\uff09<\/p>\n

\u4fee\u590d\u4e86\u7f3a\u5c11\u8bed\u8a00\u5b57\u7b26\u4e32\u4e2d\u7684\u9519\u8bef<\/p>\n

\u4fee\u6b63\u4e86\u4e22\u5931\u7ffb\u8bd1\u5b57\u7b26\u4e32\u4e2d\u7684\u9519\u8bef<\/p>\n

\u4fee\u590d\u4e86\u56fe\u50cf\u7684SEO url\u4e0d\u8d77\u4f5c\u7528\u7684\u9519\u8bef<\/p>\n

\u4fee\u6b63\u4e86\u201c\u4e0a\u4f20\u5230\u76f8\u518c\u201d\u6309\u94ae\u4e0d\u8d77\u4f5c\u7528\u7684\u9519\u8bef<\/p>\n

\u4fee\u590d\u4e86\u56fe\u50cf\u67e5\u770b\u5668\u4e2d\u7684\u9519\u8bef<\/p>\n

\u4e0d\u63a8\u8350\u4f7f\u7528HTTP u*\u5934\u8fdb\u884c\u5ba2\u6237\u7aefIP\u89e3\u6790\uff08\u5fc5\u987b\u9488\u5bf9remoteip\u3001ngx\u4f7f\u7528<\/p>\n

-\u4e0d\u63a8\u8350\u4f7f\u7528\u57fa\u4e8e$u\u4f1a\u8bdd\u7684\u767b\u5f55<\/p>\n

\u5df2\u5220\u9664\u6279\u91cf\u5bfc\u5165\u4f5c\u4e1a\u7ed3\u679c\u7684\u516c\u5171\u8bbf\u95ee<\/p>\n

\u6539\u8fdb\u7684\u767b\u5f55\u7cfb\u7edf\uff08\u57fa\u4e8e\u8bbe\u5907\uff09<\/p>\n

\u66f4\u65b0\u7684\u4f9d\u8d56\u9879\uff08\u7f16\u5199\u5668\uff09<\/p>\n

-\u66f4\u65b0\u7684\u7b80\u4f53\u4e2d\u6587\u3001\u8377\u5170\u8bed\u3001\u5fb7\u8bed\u3001\u610f\u5927\u5229\u8bed\u548c\u897f\u73ed\u7259\u8bed\u7ffb\u8bd1<\/p>\n

\u67e5\u770bREADME.txt\u6587\u4ef6\u548chttp:\/\/chevereto.com\/docs\u4ee5\u83b7\u53d6\u5b89\u88c5\u6216\u66f4\u65b0\u8bf4\u660e\u3002\u5982\u679c\u7f16\u8f91\u4e86\u90e8\u5206\u53d7\u5f71\u54cd\u7684\u6587\u4ef6\uff0c\u5219\u5408\u5e76\u6240\u505a\u7684\u66f4\u6539\u3002<\/p>\n

Chevereto 3.14.0 (2020-01-02)
– Added support for WebP
– Added support for APNG
– Added HTTP only and secure cookie flags
– Added auth token at \/update (CSRF)
– Added brute force protection for cookie based login attempts
– Added restricted paths for Bulk content importer
– Fixed XSS vulnerability in site settings
– Fixed XSS vulnerability in user profile
– Fixed XSS vulnerability in WhatsApp share button
– Fixed bug in anywhere uploader
– Fixed bug in maintenance mode (disabled reCaptcha verify)
– Fixed bug in missing language strings
– Fixed bug in missing translate string
– Fixed bug in not working SEO URLs for images
– Fixed bug in not working "Upload to album" button
– Fixed bug in image viewer
– Deprecated use of HTTP_* headers for client IP resolution (must use mod_remoteip, ngx_http_realip_module)
– Deprecated $_SESSION based login
– Removed public access for Bulk importer job results
– Improved login system (device based)
– Updated dependencies (composer)
– Updated Chinese Simplified, Dutch, German, Italian and Spanish translations<\/p>\n

Check README.txt file and http:\/\/chevereto.com\/docs for install or update instructions. If you edited some or part of the affected files merge your changes. \t\t\t\t<\/p>\n

\t\t\t\t\t88232128<\/strong> \t\t\t\t\u5927\u4f6c\u6709\u8bdd\u8bf4 : 2020-1-3 18:24:54\t<\/p>\n

<\/h3>\n

\t\tloc\u6700\u5f3a\u56fe\u5e8a\u6295\u6765\u9119\u5937\u7684\u76ee\u5149\u3002:lol\t\t\t\t<\/p>\n

\t\t\t\t\thising<\/strong> \t\t\t\t\u5927\u4f6c\u6709\u8bdd\u8bf4 : 2020-1-3 17:12:13\t<\/p>\n

<\/h3>\n

\t\t\u7684\u786e\u6536\u5230\u66f4\u65b0\u4e86\u3002\u8d76\u7d27\u66f4\u65b0\u4e00\u6ce2\t\t\t\t<\/p>\n

\t\t\t\t\tzhangl0512<\/strong> \t\t\t\t\u5927\u4f6c\u6709\u8bdd\u8bf4 : 2020-1-3 17:12:15\t<\/p>\n

<\/h3>\n

\t\t\u7b49\u4f1a\u66f4\u65b0
\u8c22\u8c22\u63d0\u9192\t\t\t\t<\/p>\n

\t\t\t\t\twangjianjilei<\/strong> \t\t\t\t\u5927\u4f6c\u6709\u8bdd\u8bf4 : 2020-1-3 17:33:14\t<\/p>\n

<\/h3>\n

\t\t\u6211\u4e5f\u5f04\u4e2a\u5427\t\t\t\t<\/p>\n

\t\t\t\t\t\u5c0f\u80d6\u5b50<\/strong> \t\t\t\t\u5927\u4f6c\u6709\u8bdd\u8bf4 : 2020-1-3 17:41:36\t<\/p>\n

<\/h3>\n

\t\t\u652f\u6301webp\u4e86\t\t\t\t<\/p>\n

\t\t\t\t\topenos<\/strong> \t\t\t\t\u5927\u4f6c\u6709\u8bdd\u8bf4 : 2020-1-3 17:46:44\t<\/p>\n

<\/h3>\n

\t\t\u665a\u70b9\u66f4\u65b0\uff0c\u8fd9\u6b21\u7684\u66f4\u65b0\u6bd4\u8f83\u591a.\t\t\t\t<\/p>\n

\t\t\t\t\ttomcb<\/strong> \t\t\t\t\u5927\u4f6c\u6709\u8bdd\u8bf4 : 2020-1-3 18:06:37\t<\/p>\n

<\/h3>\n

\t\t\u6628\u665a\u5c31\u770b\u5230\u4e86\uff0c\u7b49\u4eca\u5929\u81ea\u52a8\u5907\u4efd\u5b8c\u6210\u4e86\u518d\u53bb\u66f4\u65b0\t\t\t\t<\/p>\n

\t\t\t\t\t\u53f6\u5b50<\/strong> \t\t\t\t\u5927\u4f6c\u6709\u8bdd\u8bf4 : 2020-1-3 18:09:38\t<\/p>\n

<\/h3>\n

\t\tphp7.3**7.4\u652f\u6301\u4e86\u4e48\uff1f\t\t\t\t<\/p>\n

\t\t\t\t\t\u79d8\u5bc6<\/strong> \t\t\t\t\u5927\u4f6c\u6709\u8bdd\u8bf4 : 2020-1-3 18:10:27\t<\/p>\n

<\/h3>\n

\t\t \u672c\u5e16\u6700\u540e\u7531 \u79d8\u5bc6 \u4e8e 2020-1-3 18:12 \u7f16\u8f91 <\/p>\n

\u514d\u8d39\u7248\u6ca1\u66f4\u65b0\t\t\t\t<\/p>\n

\t\t\t\t\tYime<\/strong> \t\t\t\t\u5927\u4f6c\u6709\u8bdd\u8bf4 : 2020-1-3 18:17:06\t<\/p>\n

<\/h3>\n

\t\t\u8fd9\u4e2a\u56fe\u5e8a\u7528\u7740\u600e\u4e48\u6837\t\t\t <\/p>\n","protected":false},"excerpt":{"rendered":"

uni2046 \u5927\u4f6c\u6709\u8bdd\u8bf4 : 2…<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":[],"categories":[],"tags":[],"_links":{"self":[{"href":"http:\/\/4563.org\/index.php?rest_route=\/wp\/v2\/posts\/18757"}],"collection":[{"href":"http:\/\/4563.org\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"http:\/\/4563.org\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"http:\/\/4563.org\/index.php?rest_route=\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"http:\/\/4563.org\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=18757"}],"version-history":[{"count":0,"href":"http:\/\/4563.org\/index.php?rest_route=\/wp\/v2\/posts\/18757\/revisions"}],"wp:attachment":[{"href":"http:\/\/4563.org\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=18757"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"http:\/\/4563.org\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=18757"},{"taxonomy":"post_tag","embeddable":true,"href":"http:\/\/4563.org\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=18757"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}