Login






nasthon1001 (silicon) v1.3.6 released

Last Updated on Wednesday, 25 February 2009 17:06

Changes
  1. Store the parameters inside template /config.php, so that the template will be configured easily
  2. Setting category column configurable in Admin
  3. Security Fix (Important!)
  4. Update images icon in Employer Menu
  5. Minor bug fix
  6. Supports PHP.ini > short_open_tag = off
    Change Files:

    images/Postit-large.gif
    images/postit-small.gif
    images/postit.gif
    images/PremiumPostit-large.gif
    images/premiumpostit.gif
    include/_adv.php
    include/_index_quicksearch.php
    include/_js_panel.php
    include/functions.inc.php
    js/general.js
    candidate-login-form.php
    candidate-login.php
    candidate-signup-form.php
    candidates-footer.php
    candidates-header.php
    display-post.php
    employer-login.php
    employer-signup-form.php
    employers-footer.php
    employers-header.php
    index-employer.php
    index-footer.php
    index-header.php
    index-home.php
    info-box-top.php
    js-menu.css
    main-ext.css
    nas_contacts.php
    nas_email_others_window.php
    nas_footer_link.php
    nas_hbar.php
    nas_static.php
    posting-form.php
    profile-form.php
    readme.txt
    resume-form.php
    config.php

    1) Store the parameters inside /config.php, so that the template will be configured easily

    edit:
    /index-header.php
    /candidates-header.php
    /employers-header.php

    ADD AT TOP:
    <?php require_once(dirname(__FILE__).'/config.php');    ?>        

    edit:
    /index-home.php
    CHANGE:
    <?php if ($use_flash == true) { ?>

    TO:
    <?php if (NAS_1004_HOME_SHOW_THEME_FLASH == 'YES') { ?>

    edit:
    /nas_footer_link.php

    FIND:
    <div id="footer_nas">..</div>

    WRAP IT BY:
    <?php if (NAS_1001_FOOTER_SHOW_NAS_LABEL == 'YES') { ?>
    <div id="footer_nas">..</div>
    <?php } ?>


    2) Setting category column configurable in Admin

    edit: /index-home.php

    CHANGE:
    JB_display_categories($categories, 3);

    TO:
    JB_display_categories($categories, JB_CAT_COLS);


    3) Bug fix: Add to "My Favorite icon" on top right ONLY work in IE6 / 7, but not Firefox

    edit:
    /js/general.js

    function createBookmarkLink() {
    sTitle = document.title;
    sUrl = window.location.href;

    if (document.all) {
    // For IE
    window.external.AddFavorite(sUrl, sTitle);

    }else if (window.external && window.external.AddFavorite) {
    window.external.AddFavorite(sUrl, sTitle);

    }else if (window.sidebar && window.sidebar.addPanel) {
    window.sidebar.addPanel(sTitle, sUrl, "");

    }else {
    //alert("do it yourself");
    }
    }

    4) Security Fix
    nas_static?page=XXX
    Using $_REQUEST['page'] = preg_replace('/[^a-z]+/i', '', $_REQUEST['page']); // sanitize
    That makes sure only A-Z can be in the parameter


    CHANGE:
    $page = $_REQUEST['page'];    
    require (dirname(__FILE__).'/lang/' .$_SESSION["LANG"] . '/' . $page .'.php');

    TO:     
    $_SESSION["LANG"] = preg_replace('/[^a-z]+/i', '', $_SESSION["LANG"]);
    $page = preg_replace('/[^a-z^_^-]+/i', '', $_REQUEST['page']); 
    require (dirname(__FILE__).'/lang/' .$_SESSION["LANG"] . '/' . $page .'.php');

    5) Security Fix
    Use JB_escape_sql() on any data put in an SQL query

    edit:
    display-post.php
    index-employer.php
    include\functions.inc.php
    include\_index_quicksearch.php

    6) Security Fix
    Use JB_escape_sql() on any data display directly from DB

    edit:
    display-post.php

    CHANGE:
    <?= $empl_row['CompName'] ?>
    TO:
    <?php echo JB_escape_sql($empl_row['CompName']) ?>


    7) Other fix
    edit:

    display-post.php
    CHANGE
    $empl_row[CompName] -> $empl_row['CompName']
    $empl_row[FirstName] -> $empl_row['FirstName']
    $empl_row[LastName] -> $empl_row['LastName']

    8) Follow the change in default template.

    edit:
    /candidates-header.php

    CHANGE:
    <meta http-equiv="description" content="<?php echo JB_SITE_DESCRIPTION; ?>">
    <meta http-equiv="keywords" content="<?php echo JB_SITE_KEYWORDS; ?>">        

    TO:
    <meta http-equiv="description" content="<?php echo jb_escape_html(JB_SITE_DESCRIPTION); ?>">
    <meta http-equiv="keywords" content="<?php echo jb_escape_html(JB_SITE_KEYWORDS); ?>">


    edit:
    /display-post.php

    CHANGE:    
    $order_str = "&order_by=".$_REQUEST['order_by']."&ord=".$ord;

    TO:
    $order_str = "&order_by=".$_REQUEST['order_by']."&ord=".$ord;


    CHANGE:
    if ($prams['guid']=='') { // the job is form this site.
    $mode = "view";
    JB_display_posting_form (1, $mode, $prams, $admin);
    }

    TO:    
    //if ($prams['guid']=='') { // the job is form this site.
    $mode = "view";
    JB_display_posting_form (1, $mode, $prams, $admin);
    //}


    edit:
    /js-menu.css

    CHANGE:    
    .XulMenu .item img { position: inline; }

    TO:
    .XulMenu .item img { position: static; }


    edit:
    /posting-form.php

    CHANGE:

    <?php if (JB_MAP_DISABLED != 'YES' ) {

    $JB_MAP_IMAGE_FILE = 'map-small.jpg';
    $JB_PIN_IMAGE_FILE = 'pin.gif';

    ?>        

    TO:
    <?php if (JB_MAP_DISABLED != 'YES' ) { ?>        


    edit:
    /resume-form.php
    Top Comment is updated.


    9) Remove files

    remove:
    /employe-request-form.php
    /employer-email-form.php


    10) Supports PHP.ini > short_open_tag = off

    CHANGE ALL <?= ?> to <?php echo  ?>

    11) Update Employer Menu images

    edit:
    /images/postit-small.gif
    /images/postit.gif
    /images/PremiumPostit-large.gif
    /images/premiumpostit.gif

    12) Fix Resume Print button error in IE7

    edit: main-ext.css
    AT THE BOTTOM, ADD:
    a.iconbutton{cursor:hand;}

    edit: resume-form.php

    AT THE TOP - CHANGE:
    <?php /* NASTHON */
    if ($mode == "view") {
    $BTN_PRINTPRE = '<a class="iconbutton"  href="javascript:printpreview();">' . '<div style="float:left; margin-top:-1px; margin-right:2px; display:inline;"><img src="'.JB_THEME_URL. 'images/icon/printer.gif" border="0"></div>' . '<div style="float:left;">' . $label['nasthon1005_button_print'] . '</div></a>';
    echo '<div class="printbtn" style="margin-top:10px;">' . $BTN_PRINTPRE . '</div>';
    }
    ?>

    TO:

    <?php /* NASTHON */
    if ($mode == "view") {
    $BTN_PRINTPRE = '<div style="float:left; margin-top:-1px; margin-right:2px; display:inline;"><a class="iconbutton"  href="javascript:printpreview();"><img src="'.JB_THEME_URL. 'images/icon/printer.gif" border="0" alt="'. $label['nasthon1001_button_print'] . '"></a></div>' . '<div style="float:left;"><a class="iconbutton"  href="javascript:printpreview();">' . $label['nasthon1001_button_print'] . '</a></div>';
    echo '<div class="printbtn" style="margin-top:10px;">' . $BTN_PRINTPRE . '</div>';
    }
    ?>


    AT THE BOTTOM - CHANGE:
    <?php /* NASTHON */
    if ($mode == "view") {
    $BTN_PRINTPRE = '<a class="iconbutton"  href="javascript:printpreview();">' . '<div style="float:left; margin-top:-1px; margin-right:2px; display:inline;"><img src="'.JB_THEME_URL. 'images/icon/printer.gif" border="0"></div>' . '<div style="float:left;">' . $label['nasthon1005_button_print'] . '</div></a>';
    echo '<div class="printbtn" style="margin-top:10px;">' . $BTN_PRINTPRE . '</div>';
    }
    ?>

    TO:

    <?php /* NASTHON */
    if ($mode == "view") {
    echo '<div class="printbtn" style="margin-top:10px;">' . $BTN_PRINTPRE . '</div>';
    }
    ?>

    < Prev   Next >

    Categories

    Copyright ©2005 - 2009 Nasthon Systems