Serendipity 1.1.3
June 17th, 2007
![[Serendipity]](/images/serendipity.jpg "Serendipity")
Serendipity 1.1.3 has been released due to a SQL injection vulnerability reported by Dr. Neal Krawetz today. It is possible to abuse a ‘commentMode’ variable to inject SQL code that was targeted to the function that fetches comment information. This variable was introduced to Serendipity 1.1, so all prior versions are not affected.
Please update your blogs as soon as possible. For full details, please refer to the release announcement.
Related
- December 21, 2010: Serendipity 1.5.5 (link)
- August 27, 2010: Serendipity 1.5.4 (link)
- May 10, 2010: Serendipity 1.5.3 (link)
- January 25, 2010: Serendipity 1.5.2 (link)
- December 21, 2009: Serendipity 1.5.1 (link)
- December 21, 2009: Serendipity 1.5 (link)
- August 24, 2009: Serendipity 1.5 beta (link)
- January 16, 2009: Serendipity 1.4.1 (link)
- December 29, 2008: Serendipity 1.4 (link)
- November 11, 2008: Serendipity 1.4 beta 1 (link)
- April 22, 2008: Serendipity 1.3.1 (link)
- March 18, 2008: Serendipity 1.3 (link)
- February 25, 2008: Serendipity 1.3 beta 1 (link)
- December 8, 2007: Serendipity 1.2.1 (link)
- August 26, 2007: Serendipity 1.2 released (News)
- June 17, 2007: Serendipity 1.1.3 (News)
- March 1, 2007: Serendipity 1.1.2 (News)
- February 22, 2007: Serendipity 1.1.1 released (News)
- December 28, 2006: Serendipity 1.1 released (News)
- December 1, 2006: Serendipity 1.0.4 (News)
- November 8, 2006: Serendipity 1.0.3 released (News)
- October 18, 2006: Serendipity 1.0.2 released (News)
- August 14, 2006: Serendipity 1.0.1 (News)
- July 28, 2006: Serendipity (Directory)
- June 15, 2006: Serendipity 1.0 released (News)
Stats for Serendipity
- Number 25 in Powered by . . .
- not among the top 30 in Most visited CMS site
- Number 19 in Most linked CMS site
Links
- Serendipity reference site: http://www.s9y.org/
Categories: News
Recent Comments