CMS Development Tracking

MustLive pointed out a possible XSS in the form to email an article to a friend that we're fixing with this release.

Please note that this problem only exists in Geeklog 1.4.0 - neither Geeklog 1.4.1 nor any older versions (1.3.x series) have that problem.

To upgrade from Geeklog 1.4.0sr5-1, download the upgrade archive. To upgrade from any other 1.4.0 version, please use the combo update, which also includes all the previous security updates.

Upgrades should be straightforward, as you only have to replace one file. Since security issues are often exploited soon after they become public, you should install this upgrade as soon as possible.

Related CMS news:

Geeklog 1.5.1

Fantastico 2.10.4 Released

Forum Plugin Version 2.7.1 - Security Fix

January 9th, 2008

Geeklog 1.4.0sr6

About AllCMS.org

CMS in development:

b2evolution

Dragonfly

Drupal

e107

Exponent

Geeklog

Joomla!

Mambo

Nucleus

Nuke-Evolution

PostNuke

Serendipity

TextPattern

Wordpress

Xaraya

XOOPS

XOOPS Cube

CMS in development: