phplist.com :: phplist news

Security Announcement

Tue, 18 Jul 2006 13:40:58 +0100

Recently two vulnerabilities have been found in older versions of PHPlist. Everyone is urgently advised to upgrade to the latest release.
Affected Versions: any version before 2.6.4

Security Announcement

Sat, 15 Jul 2006 21:02:41 +0100

A new security issue has been discovered in phplist.

Not all installations are vulnerable, but you are vulnerable if:

- you have "register_globals" ON in your PHP settings
- you use PHP 4 that is older than version 4.4.1
- or you use PHP 5 that is older than version 5.1.0

Screenshots

Wed, 09 Aug 2006 19:25:34 +0100

We've added some screenshots to the site, so you can have an idea of what phplist looks like, but you can always try the DEMO as well, of course.

version 2.10.3 is out

Sat, 07 Oct 2006 05:16:06 +0100

I've just released version 2.10.3.

This version is mostly a bugfix and security fix update. It's highly recommended to upgrade your systems.

Get it from the download page, and some more information at http://tincan.co.uk/releasenotes

The official Nobel Prize website uses phplist

Fri, 20 Oct 2006 01:55:21 +0100

As gradually Nobel Prize Winners are announced, you can sign up to get the latest news from the Nobel Committee at their website. And it is powered by phplist!

phplist in Japanese

Sat, 18 Nov 2006 01:16:35 +0000

If you are, or can read and use, Japanese, you will probably want to check out the new Phplist Japanese project on SourceForge.

It even has it's own phplist website on www.phplist.jp

As I have no idea what it says, I presume it will be helpful. for those who can read it.

Featured site on Wikkawiki

Wed, 06 Sep 2006 02:43:06 +0100

phplist is listed as a featured site on http://wikkawiki.org/WikkaSites
You may have to reload that page a few times to make phplist appear, as it seems to be running from some random content system. I hope their servers can handle the demand.

We use this Wiki engine for our documentation section.

New Website for phplist!

Fri, 30 Jun 2006 20:13:47 +0100

Welcome to the all new phplist dot com!

We hope you enjoy it, and that it serves the phplist community better! Now you can quickly and easily find and navigate between the online documentation wiki, the forums, issue tracker, and other general information.

phplist drops below 10.000 on Alexa

Fri, 01 Dec 2006 22:31:59 +0000

It was likely to happen soon, as the daily and weekly averages were often below 10.000 but it has now actually happened. The Alexa Ranking of phplist is below 10k.

Ok, as already discussed on Slashdot the figures should be taken with a pinch of salt, but we're excited about it anyway.

CVS version back online

Thu, 14 Dec 2006 01:29:49 +0000

You can now follow the latest developments of phplist, by checking out the CVS Version of the demo.

Please note, in the demos, changes are reset every hour.

version 2.10.4 is out

Thu, 28 Dec 2006 19:28:19 +0000

happy new year everyone. Version 2.10.4 of phplist has now been released. This version fixes several bugs, and adds one feature, an anti spam method to stop spammers adding invalid users to the system. Also, the FCKeditor has been updated to version 2.3.2.

new development version 2.11.2

Wed, 03 Jan 2007 03:01:56 +0000

a new development version of phplist has been released. This is not a version of the software that normal users should use. It is the future of phplist, but not just yet for everyone. If you want to have a play with it, go over and download it. Feedback always appreciated in Mantis

version 2.11.3

Wed, 28 Feb 2007 03:55:08 +0000

We've released a new development version. Some new exciting things have been added, like a bandwidth calculation of the mailout, and clever click track links in the emails.

You can download it from Sourceforge and you can read more about it in the Release Notes

new stable release, 2.10.5

Mon, 03 Sep 2007 20:11:15 +0100

We have just released a new stable version: 2.10.5. For more information, check out the releasenotes . To get it, go to the download page.

new stable release, 2.10.7

Tue, 28 Oct 2008 12:39:15 +0000

We've released a new stable version of phpList. This version is a security update, that fixes a vulnerability that was found in the FCKeditor that is shipped with phpList. We strongly advise everyone to upgrade to this release.

security update, version 2.10.8

Tue, 09 Dec 2008 11:56:59 +0000

Recently a vulnerability was found that allows unauthorized access to files locally on the server that phpList is hosted on. We have released version 2.10.8 to fix this issue. Everyone using a version prior to this version is strongly recommended to upgrade.

We want to thank Paul Myatt for reporting this vulnerability and handling the issue in a responsible manner.

security update version 2.10.9

Thu, 29 Jan 2009 01:15:58 +0000

We've released version 2.10.9 that fixes a local file include vulnerability.This vulnerability allows attackers to display the contents of files on the server, which can aid them to gain unauthorised access.

Everyone using any version up to this one is advised to upgrade as soon as possible. Any clients hosted by Tincan have already been patched or upgraded.

new stable version, 2.10.10

Tue, 05 May 2009 19:39:50 +0100

HI there,

This release is aimed at hardening the security in phpList. Several changes have been made to eliminate potential attack vectors.
It also includes:

Some bug fixes

Internationalization additions

Re-enable image upload in fckeditor

Improves mime encoding to avoid attachment corruption

It is mainly a minor release, but we wanted to make this fixes available.
For more information please visit the mantis changelog page.

Upgrading your current version

Unpack the new packaged version into a new "lists" directory.
Try it out.

Backup the database (this might not be needed if you are upgrading from 2.10.9)
Then update it as mention on the admin page (there is a link once you update).

Once you feel confortable you can move the old code into a new directory and rename this new one with the old name.

Once that is ready the new version is available for the public into the URL you were using.

Please go to the forum if you have questions.

Cheers,

phpList Team

phpList and Joomla

Thu, 14 May 2009 22:52:16 +0100

Joomla users may be interested in a subscription service provided by Dioscouri. We haven't tried it, but the screenshots look very good. For more information check out their website .