Serendipity Forums

User and developer community
https://board.s9y.org/

Security Warning -- Upgrade to 1.2.1

https://board.s9y.org/viewtopic.php?t=11858

Page 1 of 1

Security Warning -- Upgrade to 1.2.1

Posted: Thu Dec 13, 2007 1:06 am
by chickens
While looking through my security RSS feeds I found out that there is a XSS in older versions of the RSS plugin. It seems to have been fixed in the latest version if s9y.

More info: http://nvd.nist.gov/nvd.cfm?cvename=CVE-2007-6205

Back to work I go... :)

Re: Security Warning -- Upgrade to 1.2.1

Posted: Thu Dec 13, 2007 12:40 pm
by garvinhicking
Hi!

Note that you only need to upgrade when using the Remote RSS sidebar plugin. Not soo many blogs even have that enabled.

Also be sure to subscribe to blog.s9y.org, it contains new version announcements.

Regards,
Garvin

Posted: Thu Dec 13, 2007 11:10 pm
by chickens
Ahh, it was just the RSS inclusion sidebar. I was thinking it was the RSS sidebar for changing the format of your RSS feed. The severity just went from a 10/10 in my mind to a 2/10.
All times are UTC+02:00
Page 1 of 1

Powered by phpBB® Forum Software © phpBB Limited