Welcome to Geeklog, Anonymous Thursday, April 25 2024 @ 06:26 am EDT

Geeklog 1.5.2sr4

Saturday, April 18 2009 @ 07:15 am EDT
Contributed by: Dirk
Views: 9,822

Bookoo of the Nine Situations Group has posted yet another SQL injection exploit. This time, the problem is in usersettings.php and can again be used by an attacker to extract the password hash for any account. Geeklog 1.5.2sr4 fixes this issue and is available for download

as a complete tarball, for fresh installs and upgrades from any earlier release
as an update for 1.5.2sr3 and
as a "combo" update, bundling all the changes for 1.5.2sr1 - 1.5.2sr4.

Comments

Geeklog 1.5.2sr4 | 2 comments | Create New Account

The following comments are owned by whomever posted them. This site is not responsible for what they say.

Geeklog 1.5.2sr4

Authored by: pearl051 on Saturday, April 18 2009 @ 12:38 pm EDT

Does this impact 1.4.1? Thanks.

Geeklog 1.5.2sr4

Authored by: alb3rt on Sunday, April 19 2009 @ 05:58 am EDT

These updates are necessary for Geeklog 1.5.1 ?

---
D Web Studio - www.d-webstudio.net

Warning: Javascript required to enable functionality

Geeklog 1.5.2sr4

Search

Resources

About

Getting started

Support

Development

Topics

User Functions

What's New

Articles last 4 weeks

Comments last 4 weeks

Pages last 4 weeks

Links last 4 weeks

Downloads last 4 weeks