Contributed by: Dirk on Sunday, July 16 2006 @ 12:00 pm EDT
Last modified on
JPCERT/CC informed us about a possible XSS[*1] in the comment handling that we're fixing with the following releases:
Upgrades should be straightforward as you'll only have to replace one file (lib-comment.php for Geeklog 1.4.0 and comment.php for Geeklog 1.3.11).