Welcome to Geeklog, Anonymous Sunday, December 22 2024 @ 06:38 pm EST

News

Geeklog 1.6.0sr1 and 1.5.2sr5

  • Thursday, July 30 2009 @ 02:00 pm EDT
  • Contributed by:
  • Views: 8,911
Security

Geeklog 1.6.0sr1 and 1.5.2sr5 address the following security issues:

  1. Gerendi Sandor Attila reported an XSS in the forms to email a user and to email a story to a friend.
  2. The "Mail Story to a Friend" function didn't check story permissions, so that it was possible to email a story even if you didn't have the permissions to view it on the site.

For Geeklog 1.6.0, we also fixed two bugs (an SQL error when the story submission queue was off and a call to a nonexistent function).

The following files are available:

Geeklog 1.6.0

  • Sunday, July 19 2009 @ 12:00 pm EDT
  • Contributed by:
  • Views: 13,209
Announcements

The Geeklog Team is pleased to announce that Geeklog 1.6.0 is now available for download.

This release incorporates the results of our successful 2008 Google Summer of Code students, namely site migration and improved plugin installation (by Matt West), improved search (by Sami Barakat), and improved comments functionality (by Jared Wenerd). It also includes a new plugin to automatically generate sitemap.xml files (by mystral-kk) and a few other improvements. See below for details.

Geeklog 1.6.0rc2

  • Sunday, July 12 2009 @ 12:25 pm EDT
  • Contributed by:
  • Views: 6,251
Announcements

The second Release Candidate for Geeklog 1.6.0 is now available for download. Barring any surprises, this should also be the last stop before the release of the final 1.6.0.

This releases includes fixes for the FCKeditor security issue, some more fixes for the migration option of the install script, a fix for searches by date, and some more updated translations.

Page navigation