[PR #299] [MERGED] Don't expose ViMbAdmin's patch level in the footer #314

New issue

Closed

opened 2026-02-26 10:30:45 +03:00 by kerem · 0 comments

kerem commented

2026-02-26 10:30:45 +03:00

Owner

📋 Pull Request Information

Original PR: https://github.com/opensolutions/ViMbAdmin/pull/299
Author: @PhrozenByte
Created: 1/31/2023
Status: ✅ Merged
Merged: 2/23/2023
Merged by: @barryo

Base: master ← Head: enhancement/DontExposePatchlevel

📝 Commits (3)

013cfec Don't expose ViMbAdmin's patch level in the footer
9dd4d82 Remove abandoned Google Groups links from footer
935c212 Sync footer of 'myskin' template with default footer

📊 Changes

3 files changed (+14 additions, -13 deletions)

View changed files

📝 application/views/_skins/myskin/footer.phtml (+5 -3)
📝 application/views/footer.phtml (+1 -10)
📝 library/ViMbAdmin/Version.php (+8 -0)

📄 Description

Exposing the exact patch level allows attackers to easily identify likely vulnerable instances of ViMbAdmin if a security flaw happens to be found. This commit simply replaces the exact version string ('3.3.0') with the milestone version string ('3.3') in ViMbAdmin's footer. See 013cfec60b

Additional changes:

Remove abandoned Google Groups links from footer: If Google Groups or any other kind of forum is revived, one should probably rather add the links to ViMbAdmin's website and the GitHub repo instead, not include it in the footer of every single ViMbAdmin instance.
Sync footer of 'myskin' template with default footer

_{🔄 This issue represents a GitHub Pull Request. It cannot be merged through Gitea due to API limitations.}

## 📋 Pull Request Information **Original PR:** https://github.com/opensolutions/ViMbAdmin/pull/299 **Author:** [@PhrozenByte](https://github.com/PhrozenByte) **Created:** 1/31/2023 **Status:** ✅ Merged **Merged:** 2/23/2023 **Merged by:** [@barryo](https://github.com/barryo) **Base:** `master` ← **Head:** `enhancement/DontExposePatchlevel` --- ### 📝 Commits (3) - [`013cfec`](https://github.com/opensolutions/ViMbAdmin/commit/013cfec60b4900c661e1cc75b20d28b6a377f8ee) Don't expose ViMbAdmin's patch level in the footer - [`9dd4d82`](https://github.com/opensolutions/ViMbAdmin/commit/9dd4d8247a85a11e404b09b852838f9037aa450e) Remove abandoned Google Groups links from footer - [`935c212`](https://github.com/opensolutions/ViMbAdmin/commit/935c212d775ecf6908892c8932e7bfb0c01753e2) Sync footer of 'myskin' template with default footer ### 📊 Changes **3 files changed** (+14 additions, -13 deletions) <details> <summary>View changed files</summary> 📝 `application/views/_skins/myskin/footer.phtml` (+5 -3) 📝 `application/views/footer.phtml` (+1 -10) 📝 `library/ViMbAdmin/Version.php` (+8 -0) </details> ### 📄 Description Exposing the exact patch level allows attackers to easily identify likely vulnerable instances of ViMbAdmin if a security flaw happens to be found. This commit simply replaces the exact version string ('3.3.0') with the milestone version string ('3.3') in ViMbAdmin's footer. See 013cfec60b4900c661e1cc75b20d28b6a377f8ee Additional changes: * [Remove abandoned Google Groups links from footer](https://github.com/opensolutions/ViMbAdmin/commit/9dd4d8247a85a11e404b09b852838f9037aa450e): If Google Groups or any other kind of forum is revived, one should probably rather add the links to ViMbAdmin's website and the GitHub repo instead, not include it in the footer of every single ViMbAdmin instance. * [Sync footer of 'myskin' template with default footer](https://github.com/opensolutions/ViMbAdmin/commit/935c212d775ecf6908892c8932e7bfb0c01753e2) --- <sub>🔄 This issue represents a GitHub Pull Request. It cannot be merged through Gitea due to API limitations.</sub>