Serendipity 1.1.3

June 17, 2007 -- filed under News

Serendipity 1.1.3 has been released due to a SQL injection vulnerability reported by Dr. Neal Krawetz today. It is possible to abuse a ‘commentMode’ variable to inject SQL code that was targeted to the function that fetches comment information. This variable was introduced to Serendipity 1.1, so all prior versions are not affected.

Please update your blogs as soon as possible. For full details, please refer to the release announcement.

April 22, 2008: Serendipity 1.3.1 (link)
March 18, 2008: Serendipity 1.3 (link)
February 25, 2008: Serendipity 1.3 beta 1 (link)
December 8, 2007: Serendipity 1.2.1 (link)
August 26, 2007: Serendipity 1.2 released (News)
June 17, 2007: Serendipity 1.1.3 (News)
March 1, 2007: Serendipity 1.1.2 (News)
February 22, 2007: Serendipity 1.1.1 released (News)
December 28, 2006: Serendipity 1.1 released (News)
December 1, 2006: Serendipity 1.0.4 (News)
November 8, 2006: Serendipity 1.0.3 released (News)
October 18, 2006: Serendipity 1.0.2 released (News)
August 14, 2006: Serendipity 1.0.1 (News)
July 28, 2006: Serendipity (Directory)
June 15, 2006: Serendipity 1.0 released (News)

Stats for Serendipity

not among the top 25 in Powered by . . .
15th place in Most visited CMS site
22nd place in Most linked CMS site

BlogsWeek.com

Serendipity 1.1.3

Related

Stats for Serendipity

Links

Search

Popular platforms