CMS News, Reviews, Interviews and Articles
A new version of Geeklog has been made available. Version 1.8.1 ships with jQuery 1.6.3, which fixes a possible XSS in that JavaScript library, which shouldn’t have affected Geeklog itself, but may potentially exist in add-ons that make extensive use of jQuery. Geeklog 1.8.1 also fixes two cases of information leakage, where the OAuth consumer [...]
Some updates from the Geeklog universe: Geeklog 1.7.1sr1 addresses an XSS in the Configuration admin panel, reported by Aung Khant of the YGN Ethical Hacker Group. Due to the built-in CSRF protection this weakness is somewhat harder to exploit but we would nonetheless advise that you secure your site by installing this update ASAP. In [...]
A security exploit within the FCKEditor’s php connector has prompted a new release of Geeklog to address this issue. Apparently this flaw allows for malware to end up being hosted on some Geeklog powered sites by using this exploit. As a result, this new version is available to resolve. “Geeklog 1.6.0sr2 is now available for [...]
Geeklog 1.5.2 is another maintenance release for the 1.5.x series. The first release candidate is now available for download. This release fixes issues with the story preview and duplicate story ids, the trackback editor, clickable links in text postings, issues with feed updates, and some other minor problems. We’ve also thrown in some small improvements, [...]
Geeklog was originally created to run the Securitygeeks and Newsgeeks websites but was released into the wonderful world of opensource under the GPL license. Geeklog has been around for quite some time, while it used to be notoriously difficult to install.. this new release promises some changes to make it better. Geeklog is somewhat of [...]
Recent Comments