A possible Cross-Site security vulnerability has been identified by NetAgent Co., Ltd. and JPCERT/CC Lt - http://jvn.jp/

The issue is with the forum search not correctly filtering out javascript. This new release addresses that issue and all sites are recommended to upgrade to this latest release which is now available in the downloads area.

The upgrade steps are to replace the changed files and run the plugin upgrade.

• public_html/index.php
• config.php
• functions.inc

In the unlikely event that you missed it (and since the announcement is about to drop from the home page): We finally released Geeklog 1.5.0 last week.

Since then, the demo site has also been upgraded to 1.5.0 and Ironmax and others are busy updating the themes. Great work. Thanks a lot, guys!

Also, we hope you've noticed a slight performance improvement on www.geeklog.net. This is not due to 1.5.0, though, but our friendly hosting service and sponsor, pair Networks, who upgraded and switched our two servers around so that now the faster of the two is powering geeklog.net.

I'd also like to announce that Geeklog will have a booth at this year's FrOSCon, a very fine open source conference to be held on August 23 + 24, 2008 in Sankt Augustin, Germany. This date coincides with the end of this year's Summer of Code so that we should be able to show off some of our student's accomplishments by then. We hope to see some of you there!

The gl Labs Community is pleased to announce that glFusion v1.0.0 is now available for download. glFusion is built on the foundation of Geeklog v1.5.0, and brings additional style and functionality to your new or existing Geeklog-based site by including pre-installed plugins and the Nouveau theme. Plugins include: CAPTCHA, Bad Behavior2, Media Gallery, Forum, and FileMgmt. glFusion doesn't stop at just packaging things together, there are several enhancements under the hood that bring improved performance, scalability, and usability. We have also created a new online documentation wiki for glFusion for your reading pleasure.