A non official irc channel has been opened, it's non official because the devs can't take the effort to be present and support on this channel, but I'm pretty sure you'll find others users which can help you to solve problems (if you got any) or to improve your tracker.
Here the original post: http://www.btiteam.org/smf/index.php?topic=12783.0
LIST OF CHANGED FILES: ---------------------- - include/crk_protection.php - include/functions.php - install/index.php - scrape.php
available: - direct download: in download area - via torrent: http://demo.xbtit.com/index.php?page=torrent-details&id=d4a96a5aacbc92a82d6715730f5a1b0afd643c7d
xbtit 2.0.0 revision 547
Revision 547 ------------ - small fix on account.php (smf group update on validate) - fixed possible SQL injection in scrape.php - changed Spanish language
Revision 545 ------------ Fix a Remote SQL Injection Vulnerability
Revision 544 - Directory Listing Modified Tue Jul 15 16:40:33 2008 UTC (6 weeks, 1 day ago) by Khez
=== admin.users.tools.php === FIXED - A PHP Warning when no change is made to the user
=== blocks/forum_block.php === FEATURE - Option to chose from last active TOPICS or latest POSTS FIXED - SMF SQL with proper caching
=== admin.config.php | admin.config.tpl === ADDED - Support for the forum block topic|posts option
=== install.php === FIXED - A possible issue with XBTIT-SMF support on an XBTIT reinstall
Revision 543 ------------ === admin.users.tools.php === ADDED - SMF Search for member ID => pottentially bad ADDED - Notices on member/rannk not found in SMF OPTIM - Removed an if statement FIXED - General tab/space issues FIXED - Some double-single quoted lost optimizations
=== forum_block.php === OPTIM - Completely Rewritten Code FIXED - SMF branch to show topic subject
=== common.php === OPTIM - everything with proper indentation OPTIM - everything with dash comments
=== functions.php === FIXED - Invalid memory_get_usage with PHP 4 when compiled without memory-limit
=== include/jscss.php === ADDED - include/jscss file for use with $morescript and $morecss vars OPTIM - moved js to an actual file
=== jscript/xbtit.js === ADDED - jscript/xbtit.js file to allow clientside caching and conserver bandiwdth OPTIM - resize by removing clientside a subsequent getElementById call
=== index.php === OPTIM - A couple of double quoted vars to direct php ADDED - include statement for include/jscss.php
available: - direct download: in download area - via torrent: http://demo.xbtit.com/index.php?page=torrent-details&id=0ce86b40359d4f50f26ca8ff3de24e0783d27f28
a vulnerability (sql injection which can give the admins nick + passhash) has been discover in all btit 1.4.x/xbtit <= rev 544 version (http://www.milw0rm.com/exploits/6296), please apply urgently the patch
