Our newsletter

Updates, actions and work of the Club
View IDoBlog news archive

Download

Try it right now

IDo Community

This community works on IDoBlog community 2.0 More info here.

Login Form



IDoBlog LatestComments

Administrator
Turning on search friendly urls, apache rewrite

Possible it is your's server error.

Administrator
Jfolder - path is not a folder

Please upgrade jQuery

Administrator
How do I change "Your haven't permissions to write to blog"?

Please write me in PS

Administrator
Problem with the display of Profile Section.

Solved! Wrote you to email. Regards

Administrator
test

Problem solved! Regards

IDoBlog LiveNews

Administrator
Frequently Asked QuestionsStopping public support

2011.02.02 08:43 1 0

Hello!Forced to inform you that we are close the p...

Tony Kishawi
TroubleshoutingError message when creating a new blog, ping not sent to Twitter

2010.11.11 11:57 2 0

I have added my user name and password for Twitter...

dung vo van
TroubleshoutingError submiting comment on IE 8 with captcha

2010.11.03 04:18 4 0

Hello,I'm using idoblog free version. When submit ...

gauthier
TroubleshoutingThe french version?

2010.10.26 07:28 1 0

Hello, it is French translation available ?

Anton
TroubleshoutingError when new user login

2010.10.22 08:51 0 0

After authentication the new user is sent directly...

IDoBlog Online

 
0 registred users and 16 guests online now

IDoBlog NewUsers

 
FAQ aJax blog bugs buy catgories community builder database error error hackers idoblog pro major security issue possible back door price profile test translation troubleshooting users where
Tag: profile

TroubleshoutingEdit profile gives a blank page

Charalampos Kontopanagos 2009.10.22 16:09 0 0

 

From my profile I click "Edit profile" and I get a blank page (component area - the rest of my template loads correctly).

Someone told me that for a moment it worked and then back to blank again...

FREE version.


Any ideas!?

 
  • Comments disabled. Why?

    • TroubleshoutingLocking the entrance for

    UDtecnovirtual 2009.09.11 20:35 0 0

     

    First of all.... sorry for my English I'm from Colombia.

    Acording to some post IDOBLOG has a problem with a module that allows a hacker to use SQL-INJECTION to get the user and passwords table.

    They also exploited it with my site (www.udtecnovirtual.org) I restored it and fixed the problem.

    It's a wrong filter at /components/com_idogoblog/site/models/profile.php, at getyourfriends()  and getyourfriendsat() functions.

    wrong:
    $userid = JRequest::getVar('userid');

    right:
    $userid = JRequest::getVar('userid', 0, '', 'int');


    It solves the problem, just verify the content of the parameter to use in the query.

    If you like it, just post a comment at: (spanish: pagina en español con la correción del componente)

    http://www.udtecnovirtual.org/index.php?option=com_content&view=article&id=189:haz-sido-qhackeadoq-por-udtecnovirtual&catid=47:eduardoch

    I've attached the zip (idoblog installer) with the patch of the problem.  here

    Or use profile.php and replace it at /components/com_idogoblog/site/models/profile.php.


    EduardoCh - UDTecnoVirtual.org


     
  • Comments disabled. Why?