Contributed by: Dirk on Tuesday, June 01 2004 @ 04:45 pm EDT
Last modified on
The updates to Geeklog 1.3.9sr1[*1] and Geeklog 1.3.8-1sr5[*2] fix this problem now. Fixed versions of the affected comment.php are also available for 1.3.7sr5[*3] and for 1.3.6[*4] , even though these versions aren't really supported any more and we would strongly advise you to upgrade.
Geeklog 1.3.9sr1 (which is also available as a complete tarball[*5] ) includes additional fixes for several places where the topic permissions hadn't been checked properly as well as some other bugfixes that are not security-related (details can be found here[*6] ).