Your argument immediately falls apart given Invision has released this (and other) security patches against 3.3.x AND 3.4.x. Security patches are "special" as far as bug fixes go. I'm not suggesting that Invision back port (or even test) regular bug fixes against older versions of their software. But when you have a ton of clients a version or two behind, I do expect them to test security patches against those versions, and to be clear in their release notes what versions the patches have been tested against. In an ideal world, everyone would upgrade their forum in a timely manner . But that's not how it works in the real world, unfortunately, and responsible companies will make reasonable efforts to make security patches work against recent prior versions of their software. This is especially true for public facing software, such as forum software, where an exploit in the wild can easily cause many unpatched forums to be compromised. This is the first patch I've seen from Invision that specifically stated it was only for the latest version (in this case 3.4.7). In the past, they've just labeled them as "3.3.x" and "3.4.x". Hence, why I wanted to get confirmation that it works against 3.4.5, and judging from the posts here, I am not alone. It's unfortunate that I have to rely on user reports to get confirmation, rather than from Invision themselves. ..Al
Personally, I feel it is irresponsible for IPS to not maintain several prior versions of their software for applying patches of this nature, most especially for security-related patches. Not everyone is going to be running the latest version of the software, for one reason or another. It would not take much time for Invision to have version 3.4.5 and 3.4.6 running on one of their virtual servers and to apply these patches to make sure there are no obvious issues. This practice is very common with software patches of this nature--they usually are tested against the latest version (of course), as well as one or more versions back. Given how much I'm paying Invision every year, I don't feel this is unreasonable at all. ..Al
Previous patches have been marked as for "3.4.x" and I've installed them without problems. This is the first one I've seen explicitly marked for 3.4.7 (or previously, 3.4.6), which is why I asked the question. Unfortunately, upgrading to 3.4.7 is quite a time consuming progress, as I have a forum with over three million posts, several custom skins, several hooks and applications installed, and several code modifications. It is not something I can even contemplating doing at the moment.. ..Al
Upon further investigation, this is an email I am generating myself when certain search terms are present after a post is made. I had to HTMLify my email template, and also use buildSEOUrl() to properly build the URL, and that fixed the problem.