Welcome to Geeklog, Anonymous Thursday, April 25 2024 @ 10:30 am EDT

Geeklog 1.3.9sr3

  • Friday, December 31 2004 @ 12:40 pm EST
  • Contributed by:
  • Views: 9,348
Security Geeklog 1.3.9sr3 fixes the following security issues in Geeklog 1.3.9sr2:
  1. It was possible to submit stories anonymously even if anonymous submissions were turned off in config.php (reported by Barry Wong).
    These stories still ended up in the submission queue, though, unless you disabled it in config.php.
  2. Some of the parameters in link and event submissions weren't filtered, leaving them open to potential SQL injections.

The upgrade archive contains only one file (submit.php), so this should be easy to install.

If you're on an older version of Geeklog, we recommend you upgrade to Geeklog 1.3.11 instead.