Topics

User Functions

Events

There are no upcoming events

What's New

Stories last 2 weeks

No new stories

Comments last 2 weeks

No new comments

Trackbacks last 2 weeks

No new trackback comments

Links last 2 weeks

No recent new links

NEW FILES last 14 days

No new files

Welcome to Geeklog Wednesday, April 23 2014 @ 06:12 PM EDT

Geeklog 1.4.0sr6

Security
  • Tuesday, January 08 2008 @ 02:20 PM EST
  • Contributed by:
  • Views:
    7,900

MustLive pointed out a possible XSS in the form to email an article to a friend that we're fixing with this release.

Please note that this problem only exists in Geeklog 1.4.0 - neither Geeklog 1.4.1 nor any older versions (1.3.x series) have that problem.

To upgrade from Geeklog 1.4.0sr5-1, download the upgrade archive. To upgrade from any other 1.4.0 version, please use the combo update, which also includes all the previous security updates.

Upgrades should be straightforward, as you only have to replace one file. Since security issues are often exploited soon after they become public, you should install this upgrade as soon as possible.

Trackback

Trackback URL for this entry:
https://www.geeklog.net/trackback.php/geeklog-1.4.0sr6

The following comments are owned by whomever posted them. This site is not responsible for what they say.