Welcome to Geeklog Wednesday, March 22 2017 @ 10:10 pm EDT

File Manager Vulnerability

  • Contributed by:
  • Views: 6,351
Security

An XSS vulnerability has been found by Mohammad Sikkandar Sha in the demo code for WideImage which is used in the File Manager shipped with Geeklog 2.1.0. The File Manager itself has access control and is not affected by the vulnerability.

To fix this, please remove the two following directories as soon as possible:

  • public_html/filemanager/connectors/php/inc/vendor/wideimage/demo
  • public_html/filemanager/connectors/php/inc/vendor/wideimage/test

Thank you

Geeklog Demo Site Update

  • Contributed by:
  • Views: 7,473
Announcements

As of today (November 17th, 2014), the Geeklog Demo Sites will be moved to a new hosting provider. This change will take up to a day to complete. During this move, the old Geeklog Demo version 1.8.2 will be depreciated and no longer be available. The current demo of Geeklog 2.1.0 can be found at http://demo.geeklog.net.

The demo site has all the core plugins installed plus the forum plugin. A number of Geeklog themes are installed along with the Theme Switcher plugin which makes it easier to check out the more popular themes available for Geeklog. Remember, the demo site is reset on an hourly basis with the default settings. This means any changes made to the site will be lost in an hour or less.

If you have any questions, please comment on this article or, post your thoughts in the General Geeklog Discussion forum.

Thanks

Michael (Ironmax)
Geeklog Demo Administrator

Downloads plugin 1.2.0

  • Contributed by:
  • Views: 3,003
Plugins

The new version of Geeklog's Downloads plugin is now available.

It is now compatible with Geeklog 2.1.0, and includes some improvements and fixes.

Download the plugin from my site and have fun!