Geeklog 1.4.0sr3 and 1.3.11sr6
![[Geeklog]](/images/geeklog.gif "Geeklog")
A few security issues in Geeklog have been reported by KAPDA (a possible SQL injection and authentication bypass, a possible cross site scripting, and a path disclosure in some themes). Additionally, an internal code review has revealed another possible SQL injection in the story submission.
Geeklog developers are therefore releasing Geeklog 1.4.0sr3 to address these issues, recommending that Geeklog users install the new version as soon as possible.
As usual, the current and previous versions of Geeklog (1.4.0 and 1.3.11, respectively) are supported. If you’re still running an older version, now may be a good time to upgrade.
Talking about security issues, a security issue has recently been found in FCKeditor, whose version 2.1 ships with Geeklog 1.4.0. Further explanations and remedies about this and all the previously mentioned issues can be found in the original Geeklog announcement.
Related
- May 9, 2010: Geeklog 1.7.0 (link)
- May 2, 2010: Geeklog 1.7.0 RC1 (link)
- April 4, 2010: Geeklog 1.7.0 beta 1 (link)
- November 22, 2009: Geeklog 1.6.1 (link)
- November 8, 2009: Geeklog 1.6.1 RC1 (link)
- November 1, 2009: Geeklog 1.6.1 beta 1 (link)
- August 30, 2009: Geeklog 1.6.0sr2 (link)
- July 30, 2009: Geeklog 1.6.0sr1 (link)
- July 19, 2009: Geeklog 1.6.0 (link)
- July 12, 2009: Geeklog 1.6.0 RC2 (link)
- June 28, 2009: Geeklog 1.6.0 RC1 (link)
- June 21, 2009: Geeklog 1.6.0 beta 3 (link)
- May 31, 2009: Geeklog 1.6.0 beta 2 (link)
- May 1, 2009: Geeklog 1.6.0 beta (link)
- April 18, 2009: Geeklog 1.5.2sr4 (link)
- April 13, 2009: Geeklog 1.5.2sr3 (link)
- April 4, 2009: Geeklog 1.5.2sr2 (link)
- March 30, 2009: Geeklog 1.5.2sr1 (link)
- February 8, 2009: Geeklog 1.5.2 (link)
- January 24, 2009: Geeklog 1.5.2 RC1 (link)
- September 22, 2008: Geeklog 1.5.1 (link)
- September 7, 2008: Geeklog 1.5.1 RC1 (link)
- June 15, 2008: Geeklog 1.5.0 (link)
- June 8, 2008: Geeklog 1.5.0 RC2 (link)
- May 25, 2008: Geeklog 1.5.0 RC1 (link)
- May 20, 2008: Geeklog 1.5.0 beta 2 (link)
- May 5, 2008: Geeklog 1.5.0 beta 1 (link)
- January 8, 2008: Geeklog 1.4.0sr6 (link)
- December 31, 2006: Geeklog 1.4.1 (News)
- December 17, 2006: Geeklog 1.4.1 RC1 (News)
- November 5, 2006: Geeklog 1.4.1 beta 2 (News)
- September 17, 2006: Geeklog 1.4.1 beta 1 (News)
- August 31, 2006: Geeklog (Directory)
- July 23, 2006: Geeklog 1.4.0sr5 and 1.3.11sr7 (News)
- June 30, 2006: Geeklog 1.4.0sr4 (News)
- May 28, 2006: Geeklog 1.4.0sr3 and 1.3.11sr6 (News)
- March 5, 2006: Geeklog 1.4.0sr2 and 1.3.11sr5 (News)
- February 19, 2006: Geeklog 1.4.0sr1 and 1.3.11sr4 (News)
- February 5, 2006: Geeklog 1.4.0 (News)
Stats for Geeklog
- Number 12 in Powered by . . .
- Number 29 in Most visited CMS site
- Number 15 in Most linked CMS site
Links
- Geeklog reference site: http://www.geeklog.net/
Recent Comments